certificate verify failed

Question

certificate verify failed

moosa-aslam opened this issue 4 years ago · comments

moosa-aslam commented 4 years ago

What version of `fleet` are you using (`fleet version --full`)?

fleet - version 2.6.0

What operating system are you using?

Ubuntu 16.04

What did you do?

Connecting osqeuryd with fleet, both fleet and osquery are on same machine followed this guide
https://github.com/kolide/fleet/blob/master/docs/infrastructure/README.md

sudo /usr/bin/osqueryd
--enroll_secret_path=/var/osquery/enroll_secret
--tls_server_certs=/var/osquery/server.pem (this file is downloaded from web page of fleet)
--tls_hostname=192.168.1.195:8080
--host_identifier=hostname
--enroll_tls_endpoint=/api/v1/osquery/enroll
--config_plugin=tls
--config_tls_endpoint=/api/v1/osquery/config
--config_refresh=10
--disable_distributed=false
--distributed_plugin=tls
--distributed_interval=3
--distributed_tls_max_attempts=3
--distributed_tls_read_endpoint=/api/v1/osquery/distributed/read
--distributed_tls_write_endpoint=/api/v1/osquery/distributed/write
--logger_plugin=tls
--logger_tls_endpoint=/api/v1/osquery/log
--logger_tls_period=10

What did you expect to see?

N/A

What did you see instead?

My Client Window

My Server Window

moosa-aslam · Answer 1 · Fri May 01 2020 19:19:23 GMT+0800 (China Standard Time)

Results from
curl -v -X POST https://kolideserver:port/api/v1/osquery/enroll

Resutls From
osqueryd --verbose --tls_dump

Zach Wasserman · Answer 2 · Sat May 02 2020 00:10:16 GMT+0800 (China Standard Time)

Please see https://github.com/kolide/fleet/blob/master/docs/infrastructure/faq.md#why-arent-my-osquery-agents-connecting-to-fleet and use #kolide in the osquery Slack for troubleshooting.

certificate verify failed

What version of fleet are you using (fleet version --full)?

What operating system are you using?

What did you do?

What did you expect to see?

What did you see instead?

What version of `fleet` are you using (`fleet version --full`)?