Uploading openscap scan results failed with certificate error:
1: DEBUG: running: oscap xccdf eval --results-arf /tmp/d20210708-2775727-1wqxt0d/results.xml /var/lib/openscap/content/b7772a4001f865517e30762c406dee80fdab2100ecc010f4408519a979665f6e.xml 2: WARNING: Datastream component 'scap_org.open-scap_cref_security-data-oval-com.redhat.rhsa-RHEL8.xml' points out to the remote 'https://www.redhat.com/security/data/oval/com.redhat.rhsa-RHEL8.xml'. Use '--fetch-remote-resources' option to download it. 3: WARNING: Skipping 'https://www.redhat.com/security/data/oval/com.redhat.rhsa-RHEL8.xml' file which is referenced from datastream 4: WARNING: Skipping ./security-data-oval-com.redhat.rhsa-RHEL8.xml file which is referenced from XCCDF content 5: DEBUG: running: /usr/bin/env bzip2 /tmp/d20210708-2775727-1wqxt0d/results.xml 6: Uploading results to https://<proxyname>:9090/compliance/arf/3 7: Upload failed: SSL_connect returned=1 errno=0 state=error: certificate verify failed (self signed certificate in certificate chain) 8: Exit status: 4
Result should be successfully uploaded.
Foreman and Proxy versions:
Foreman and Proxy plugin versions:
Foreman 2.5.1 with Katello 4.1 / Proxy 2.5.1
Distribution and version:
Other relevant data:
Upload of openscap results are working fine for another registered host with katello certificates.
Upload failed if the host is not registered and is configured to use his puppert certificates.
Is it possible to create a separate katello client certificate for the failing host ?
I could not register the failing hosts because it is register directly to Redhat.