CERTIFICATE_VERIFY_FAILED

[ictinc]

Hi there, I'm completely new to FreeIPA and my knowledge is limited. I managed to get everything running and used this tool to setup an LE certficate. The webinterface now shows a valid certificate. However when I run the command: sudo ipa config-mod --defaultshell=/bin/bash I get a CERTIFICATE_VERIFY_FAILED could not connect to https://domain/ipa/json error message. I'm not sure how to overcome this issue. I would use the default certificates if it wasn't for firefox complaining about the serial of the certificate being the same as a previous one. I had an installation before but decided to start a fresh install. I went through the steps to remove the certificate from firefox but was unable to locate it under authorities, I did manage to find it under servers but that didn't solve the issue. To get around this I thought an easy fix would be to use LE certificates instead.

Any ideas as to how I would overcome the issue CERTIFICATE_VERIFY_FAILED would be much appreciated.

Kind regards, Ronald.

[thinkmassive]

Hi @ictinc, this is a duplicate of issue 25. In case this is still blocking you I recommend visiting that issue and PR 30. With that info, and the code from afrothundaaaa, you should get a working solution.