Oracle cloud scan 505 certificate has expired

[sedrakpc]

Hi,

I'm trying to run cloudsploit on Oracle cloud, but getting 505. Certificate is not expired and it is working fine with command line OCLI. Any Ideas?

INFO: Using CloudSploit config file: ./config_oracle.js
INFO: Skipping AWS pagination mode
INFO: Determining API calls to make...
INFO: Found 55 API calls to make for oracle plugins
INFO: Collecting metadata. This may take several minutes...
node:events:505
      throw er; // Unhandled 'error' event
      ^

Error: certificate has expired
    at TLSSocket.onConnectSecure (node:_tls_wrap:1531:34)
    at TLSSocket.emit (node:events:527:28)
    at TLSSocket.emit (node:domain:475:12)
    at TLSSocket._finishInit (node:_tls_wrap:945:8)
    at ssl.onhandshakedone (node:_tls_wrap:726:12)
Emitted 'error' event on ClientRequest instance at:
    at TLSSocket.socketErrorListener (node:_http_client:454:9)
    at TLSSocket.emit (node:events:527:28)
    at TLSSocket.emit (node:domain:475:12)
    at emitErrorNT (node:internal/streams/destroy:151:8)
    at emitErrorCloseNT (node:internal/streams/destroy:116:3)
    at process.processTicksAndRejections (node:internal/process/task_queues:82:21) {
  code: 'CERT_HAS_EXPIRED'
}

[sedrakpc]

I had to disable TLS validation in the mean time, until I find a proper solution 😕

process.env.NODE_TLS_REJECT_UNAUTHORIZED = 0;

But this is a temporary solution.

[mwimpy-deloitte]

In other_modules/oci/services.json the WAAS url is wrong

Should be "endpoint": "waas.{{region}}.oci.oraclecloud.com"

Changing that fixed it

Based on this site https://docs.oracle.com/en-us/iaas/api/#/en/waas/

[jorlando-tuik]

Confirming the change suggested by @mwimpy-deloitte fixes the issue.