Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

NCPA SSL Cert Issue

https://support.nagios.com/forum/viewtopic.php?t=61837

Page 1 of 1

NCPA SSL Cert Issue

Posted: Mon Mar 01, 2021 12:05 pm
by IT-OPS-SYS
Hi Team,

We have Nagios XI version 5.8.1 and we have deployed the NCPA agent version 2.3.1 via "deploy agent" function to one of the Redhat enterprise Linux server, the installation went fine and server got configured as well but as per the security scan we see that there are some vulnerability related to the SSL certificates. i.e ssl cert cannot be trusted.

I Have attached the screenshot name to the post.

Re: NCPA SSL Cert Issue

Posted: Mon Mar 01, 2021 4:39 pm
by dchurch
NCPA by default generates its own SSL certificate. Also, Nagios by default allows this because the SSL certificate used by NCPA needs to be flexible enough not to require a DNS name for the NCPA listener process. This means that unless your NCPA listener server is hosting a domain the SSL cert used by NCPA won't and can't ever be a "trusted" cert. Trusted certs are for DNS domains, not ad-hoc servers.

If you want to use a cert issued by a CA, you can. It goes into the NCPA configuration. See here for details about configuring NCPA to use a custom cert.
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited