Gitlab:Peer's Certificate issuer is not recognized

前端 未结 2 1252
眼角桃花
眼角桃花 2021-02-20 07:59

I get this error on a fresh install of gitlab. The message looks like:

fatal: unable to access \'https://gitlab-ci-
token:xxxxxxxxxxxxxxxxxxxx@gitlab.example.co         


        
相关标签:
2条回答
  • 2021-02-20 08:12

    You need to configure /etc/gitlab/gitlab.rb. Change this line

    nginx['ssl_certificate'] = "/etc/gitlab/<your-local-path>/cert.pem"
    

    to

    nginx['ssl_certificate'] = "/etc/gitlab/<your-local-path>/fullchain.pem"
    

    (Assuming, you already have nginx enabled and you have correctly issued certificates, e.g. from LetsEncrypt.)

    then restart gitlab and you're done:

    $ gitlab-ctl reconfigure
    

    Why - cert.pem does not contain full certificate chain, thus ca chain cannot be verified. Replacing with fullchain.pem solves it.

    0 讨论(0)
  • 2021-02-20 08:28

    Had faced the same problem after enabling verbose mode by following command export GIT_CURL_VERBOSE=1 and found the following issue:

    NSS error -8179 (SEC_ERROR_UNKNOWN_ISSUER)

    Found this following site helpful,But its good when you have entire control for the proxy server as well to enter the certificates.

    http://dropbit.com/?p=168

    I instead ran following command to bypass ssl verification by porxy server and it worked

    git config --global http.sslVerify "false"
    
    0 讨论(0)
提交回复
热议问题