curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
(kolla-toolbox)[root@k-node1 /]# cat /etc/redhat-release
CentOS Linux release 8.1.1911 (Core)
```
according to https://docs.openstack.org/kolla-ansible/latest/admin/advanced-configuration.html my config out to be ok, but failed.
(deploy) root@k-node1:~# pip freeze | grep kolla =9.1.0. dev588
kolla==9.1.0.dev387
kolla-ansible=
the globals.yml file is https:/ /github. com/albertjone/ kolla-config/ blob/master/ kolla-config/ multinode/ globals. yml
when use kolla-ansible to deploy it failed with following detail:
"module_ args": {
"attribute s": null,
"backup" : null,
"body_ format" : "raw",
"client_ cert": null,
"client_ key": null,
"content" : null,
"creates" : null,
"delimiter ": null,
"directory _mode": null,
"follow" : false,
"follow_ redirects" : "safe",
"force" : false,
"force_ basic_auth" : false,
"group" : null,
"headers" : {},
"http_ agent": "ansible-httpget",
"method" : "GET",
"owner" : null,
"regexp" : null,
"remote_ src": null,
"removes" : null,
"return_ content" : false,
"selevel" : null,
"serole" : null,
"setype" : null,
"seuser" : null,
"status_ code": [
"200"
"timeout" : 30,
"unix_ socket" : null,
"unsafe_ writes" : null, /10.10. 1.205:9200/ .kibana",
"url_ password" : null,
"url_ username" : null,
"use_ proxy": true,
"validate_ certs": true VERIFY_ FAILED] certificate verify failed (_ssl.c:897)>", /10.10. 1.205:9200/ .kibana"
```
TASK [kibana : Wait for kibana to register in elasticsearch]
FAILED - RETRYING: Wait for kibana to register in elasticsearch (20 retries left).Result was: {
"action": "uri",
"attempts": 1,
"changed": false,
"content": "",
"elapsed": 0,
"invocation": {
"body": null,
"dest": null,
"mode": null,
"src": null,
],
"url": "https:/
}
},
"msg": "Status code was -1 and not [200]: Request failed: <urlopen error [SSL: CERTIFICATE_
"redirected": false,
"retries": 21,
"status": -1,
"url": "https:/
}
```
and i logged into kolla_toolbox it shows below interesting staff toolbox) [root@k- node1 /]# cat /etc/pki/ ca-trust/ source/ anchors/ kolla-customca- haproxy- internal. crt BAgIJAMK1wLrbsY LPMA0GCSqGSIb3D QEBCwUAME4xCzAJ BgNV DVQQIDAJOQzEMMA oGA1UEBwwDUlRQM Q4wDAYDVQQLDAVr b2xs LMTAuMTAuMS4yMD UwHhcNMjAwNDI0M Dg1MDI4WhcNMzAw NDIy wCQYDVQQGEwJVUz ELMAkGA1UECAwCT kMxDDAKBgNVBAcM A1JU Fa29sbGExFDASBg NVBAMMCzEwLjEwL jEuMjA1MIIBIjAN Bgkq CAQ8AMIIBCgKCAQ EAwDq0b/ Zau/A1r7JT16s88 HZ7S6YM8aT+ 9lidL/GzHy9bxkS Md2IzUCozy33zos 4crUrqM3yz12BVU Xa76 8JT49QFMSmdCR2G Fj5OTzF0WyOlaoj 9c/JPk2DGh0ksf5 hfG91mlQ pLTwFMWjNL8NUWz rwBLtCMbdlORmz7 m3iH2SUuX5sDu3v Lmam cj/Qvo2OAZruNMl TtL+L99P/ 6Wf+GzXTEX9Juv1 lkB/CuVAEi uSpUPV+ CPStYjf+ SYyQDst/ OGZOxMaSnrZXpq/ wIDAQABoxMw GhwQKCgHNMA0GCS qGSIb3DQEBCwUAA 4IBAQAGR40ZbQou p5+Z tPuIrpcwTPQOjAs n5ldVYftbs7YyBF cfGHDLp1yGoONqU 2FFZ BZ60Gx0TBTM0yK6 c86i+U4CIogJ8OB 9Z59+JfTzbE7z06 0yhk6Z91qqLl 84vw/ERuY4JnDym drwoBJxxc8+ v4mJAyWm1wjg/ 9ktUP+rwFqLFmzT 3 kCF1FlvEaliaDiA xHKL7Ck3JdxruTB uXt/NfledSFVmnB czwY IEuMlJx+ 0p30X+EV3ayUhhV g+VXcHM6ZygnG3c Tegdebz58HHw+ 0gs toolbox) [root@k- node1 /]# curl https:/ /10.10. 1.205:9200/ .kibana --cacert /etc/pki/ ca-trust/ source/ anchors/ kolla-customca- haproxy- internal. crt 1":{"aliases" :{".kibana" :{}},"mappings" :{"doc" :{"dynamic" :"strict" ,"properties" :{"config" :{"dynamic" :"true" ,"properties" :{"buildNum" :{"type" :"keyword" }}},"dashboard" :{"properties" :{"description" :{"type" :"text" },"hits" :{"type" :"integer" },"kibanaSavedO bjectMeta" :{"properties" :{"searchSource JSON":{ "type": "text"} }},"optionsJSON ":{"type" :"text" },"panelsJSON" :{"type" :"text" },"refreshInter val":{" properties" :{"display" :{"type" :"keyword" },"pause" :{"type" :"boolean" },"section" :{"type" :"integer" },"value" :{"type" :"integer" }}},"timeFrom" :{"type" :"keyword" },"timeRestore" :{"type" :"boolean" },"timeTo" :{"type" :"keyword" },"title" :{"type" :"text" },"uiStateJSON" :{"type" :"text" },"version" :{"type" :"integer" }}},"index- pattern" :{"properties" :{"fieldFormatM ap":{"type" :"text" },"fields" :{"type" :"text" },"intervalName ":{"type" :"keyword" },"notExpandabl e":{"type" :"boolean" },"sourceFilter s":{"type" :"text" },"timeFieldNam e":{"type" :"keyword" },"title" :{"type" :"text" },"type" :{"type" :"keyword" },"typeMeta" :{"type" :"keyword" }}},"kql- telemetry" :{"properties" :{"optInCount" :{"type" :"long" },"optOutCount" :{"type" :"long" }}},"migrationV ersion" :{"type" :"object" ,"dynamic" :"true" },"namespace" :{"type" :"keyword" },"search" :{"properties" :{"columns" :{"type" :"keyword" },"description" :{"type" :"text" },"hits" :{"type" :"integer" },"kibanaSavedO bjectMeta" :{"properties" :{"searchSource JSON":{ "type": "text"} }},"sort" :{"type" :"keyword" },"title" :{"type" :"text" },"version" :{"type" :"integer" }}},"server" :{"properties" :{"uuid" :{"type" :"keyword" }}},"timelion- sheet": {"properties" :{"description" :{"type" :"text" },"hits" :{"type" :"integer" },"kibanaSavedO bjectMeta" :{"properties" :{"searchSource JSON":{ "type": "text"} }},"timelion_ chart_height" :{"type" :"integer" },"timelion_ columns" :{"type" :"integer" },"timelion_ interval" :{"type" :"keyword" },"timelion_ other_interval" :{"type" :"keyword" },"timelion_ rows":{ "type": "integer" },"timelion_ sheet": {"type" :"text" },"title" :{"type" :"text" },"version" :{"type" :"integer" }}},"type" :{"type" :"keyword" },"updated_ at":{"type" :"date" },"url" :{"properties" :{"accessCount" :{"type" :"long" },"accessDate" :{"type" :"date" },"createDate" :{"type" :"date" },"url" :{"type" :"text" ,"fields" :{"keyword" :{"type" :"keyword" ,"ignore_ above": 2048}}} }},"visualizati on":{"propertie s":{"descriptio n":{"type" :"text" },"kibanaSavedO bjectMeta" :{"properties" :{"searchSource JSON":{ "type": "text"} }},"savedSearch Id":{"type" :"keyword" },"title" :{"type" :"text" },"uiStateJSON" :{"type" :"text" },"version" :{"type" :"integer" },"visState" :{"type" :"text" }}}}}}, "settings" :{"index" :{"number_ of_shards" :"1","auto_ expand_ replicas" :"0-1", "provided_ name":" .kibana_ 1","creation_ date":" 1588055326408" ,"number_ of_replicas" :"1","uuid" :"5cRMGCAbR4ukQ PVqyl-kkA" ,"version" :{"created" :"6080899" }}}}}curl (https:/ /10.10. 1.205:9200/ .kibana): response: 200, time: 0.010410, size: 2719 toolbox) [root@k- node1 /]# curl https:/ /10.10. 1.205:9200/ .kibana /10.10. 1.205:9200/ .kibana): response: 000, time: 0.000128, size: 0 /curl.haxx. se/docs/ sslcerts. html
```
(kolla-
-----BEGIN CERTIFICATE-----
MIIDMjCCAhqgAwI
BAYTAlVTMQswCQY
YTEUMBIGA1UEAww
MDg1MDI4WjBOMQs
UDEOMAwGA1UECww
hkiG9w0BAQEFAAO
IynPsHTjbcy9xHR
SXzoPPU6Km+
MIZECoCwxUS2Fd3
2qpobqu627uRpyx
1TZimEthO9moRYs
ETAPBgNVHREECDA
EZxuqtsh4fOaJgw
LLt6sk+
IcFUylmv+
r62cun6Jg4vH18F
QGvYanEZP/
lLoJXkug
-----END CERTIFICATE-----
(kolla-
{".kibana_
(kolla-
curl (https:/
curl: (60) SSL certificate problem: self signed certificate
More details here: https:/
curl failed to verify the legitimacy of the server and therefore could not toolbox) [root@k- node1 /]# cat /etc/redhat-release /docs.openstack .org/kolla- ansible/ latest/ admin/advanced- configuration. html my config out to be ok, but failed.
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
(kolla-
CentOS Linux release 8.1.1911 (Core)
```
according to https:/