How to ignore bad (self-signed) SSL certificate in requests

Question

How to ignore bad (self-signed) SSL certificate in requests

kedaio opened this issue 8 years ago · comments

I tried to monitor a website with self-signed SSL certificate, but got error due to cert validation. Is there a way to skip cert validation?

by the way, I tried to set InsecureSkipVerify=true but that doesn't seem to work.

=========== error msg below =============

acheng@epcnszxw0150:~/Downloads/statusok_linux$ env InsecureSkipVerify=true ./statusok --config config.json
Reading File : config.json
No clients Registered for Notifications
Sending Test notifications to the registered clients
No Database selected.

Sending requests to apis.....making sure everything is right before we start monitoring
Api Count: 1
Request # 0 : GET https://ecsc001067.example.com:9002/

Failed !!!! Not able to perfome below request

----Request Deatails---
Url : https://ecsc001067.example.com:9002/
Type : GET
Error Reason : Get https://ecsc001067.example.com:9002/: x509: certificate is valid for hybris, not ecsc001067.example.com

Please check the config file and try again

Henry Zhu · Answer 1 · Thu Nov 09 2017 14:56:48 GMT+0800 (China Standard Time)

Solved by this command in Ubuntu 16.04:
apt-get install -y ca-certificates

Itamar Shoham · Answer 2 · Thu Dec 13 2018 21:47:56 GMT+0800 (China Standard Time)

Another error message I I like to ignore -

certificate signed by unknown authority

Michael · Answer 3 · Sat Nov 23 2019 04:02:44 GMT+0800 (China Standard Time)

I am currently experiencing this issue. Ubuntu 18.x.x

eurecomphil · Answer 4 · Thu Apr 09 2020 22:02:35 GMT+0800 (China Standard Time)

I am currently experiencing this issue too on Ubuntu 18.04.1