After setting up TLS on AtScale HA, modeler.stdout file keeps recording "http: TLS handshake error from <IP_address>:<port>: remote error: tls: bad certificate" frequently

SYMPTOM: After setting up TLS on AtScale HA, modeler.stdout file keeps recording "http: TLS handshake error from <IP_address>:<port>: remote error: tls: bad certificate" frequently

ROOT CAUSE: This would be an expected logging entry if the certificate used to set up TLS is not trusted by the OS on the nodes on which you installed AtScale HA. For example, the certificate used was self-signed.

RESOLUTION:

Add the root CA certificate into OS's trust store on all nodes in the HA configuration.

Below is the command example for CentOS 7:

cp ./your_root_CA.pem /etc/pki/ca-trust/source/anchors/
update-ca-trust force-enable && update-ca-trust extract && update-ca-trust check

Then restart modeler services.

Was this article helpful?

0 out of 0 found this helpful