There is a SSL issue in centos OCP:
openssl s_client -connect console-openshift-console.apps.ocp.centos.org:443
The above command returns an issuer verification error:
verify error:num=20:unable to get local issuer certificate
I am also unable to login into the cluster.
Metadata Update from @arrfab: - Issue assigned to arrfab
Metadata Update from @arrfab: - Issue tagged with: centos-common-infra, high-gain, medium-trouble
Here are some details : LetSencrypt recently switched to a new CA (see https://letsencrypt.org/certificates/ , updated on Dec 8 2020) The previous cert we deployed on that openshift cluster was signed by (now retired X1) and so new one was signed by (active) R3. It should be fixed now (I can myself login fine) but it triggered something interesting in the way the retrieve/push back into openshift through ansible would work for LetsEncrypt certs, so I'll add a check to verify for next ones to be renewed how that will go.
Just putting status to "Waiting on reporter" but I think it can be close, so just don't forget to give your feedback here ASAP please :)
Same for @zlopez
Thanks
Metadata Update from @arrfab: - Issue priority set to: Waiting on Reporter (was: Needs Review)
it is all working for me now both login and the openssl command :-)
Metadata Update from @arrfab: - Issue close_status updated to: Fixed - Issue status updated to: Closed (was: Open)
Issue status updated to: Open (was: Closed)
Issue status updated to: Closed (was: Open) Issue close_status updated to: Fixed
Log in to comment on this ticket.