I migrated to a new Nagios server and my Linux hosts monitored immediately started giving me errors about completing the SSL handshake.
I tried to add a new Linux host with a newly downloaded version of the ncpa server and the wizard won't add it. The wizard just says "Unable to contact server..." but if I do it manually I get a success message with my token on that port after accepting the SSL certificate in Chrome.
The "Do not verify SSL certificate" checkbox in the wizard is checked, but I don't believe it is doing anything. If I uncheck it and again try to hit Next it checks itself back again and again can't contact the server.
Any idea? I think this 2024R1.1.5 keeps wanting to check SSL certs.
2024R1.1.5 Linux NCPA add not working, ssl issue?
Re: 2024R1.1.5 Linux NCPA add not working, ssl issue?
False alarm. I had gone through my normal CIS secure config playbook and it seemed to work after that, but enabling selinux stops the wizard from being able to add a new host.
Re: 2024R1.1.5 Linux NCPA add not working, ssl issue?
Adjust SELinux Policy is the preferred approach to maintain security while allowing Nagios to function.
It requires a deeper understanding of SELinux and your specific environment.
You can use the command to adjust SELinux policies for the Nagios processes and related files. However, this requires careful consideration and testing to avoid security vulnerabilities.
Example:
Replace with the actual path to your Nagios configuration directory.
It requires a deeper understanding of SELinux and your specific environment.
You can use the
Code: Select all
semanageExample:
Code: Select all
Bash
semanage fcontext -a -t httpd_sys_rw_t "/path/to/nagios/config"
restorecon -Rv /path/to/nagios/configCode: Select all
/path/to/nagios/config