Software ssl certificate issues

From MEG Core
Revision as of 10:08, 14 June 2022 by Jstout (talk | contribs)
Jump to navigation Jump to search

Browser Issue:

Install certificate in settings > Privacy and Security > Certificates > View Certificates > Import (Authorities tab)


SystemWide certificates:

 UBUNTU:  https://ubuntu.com/server/docs/security-trust-store
 Fedora:  Certs go in /etc/pki/ca-trust/source/anchors  >> update-ca-trust

Pip and conda SSL certificates:
Error:

 Could not fetch URL https://pypi.org/simple/pip/: There was a problem confirming the ssl certificate: HTTPSConnectionPool(host='pypi.org', port=443): Max retries exceeded with url: /simple/pip/ (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1091)'))) - skipping


Answer: https://stackoverflow.com/questions/39356413/how-to-add-a-custom-ca-root-certificate-to-the-ca-store-used-by-pip-in-windows

 #From the Website above
 pip config set global.cert path/to/ca-bundle.crt
 pip config list
 conda config --set ssl_verify path/to/ca-bundle.crt
 conda config --show ssl_verify
 
 # Bonus while we are here...
 git config --global http.sslVerify true
 git config --global http.sslCAInfo path/to/ca-bundle.crt


Single use:

 pip --cert ${certificate path} pip_command