System connection to RHN fails with "The certificate is expired", or "certificate verify failed" errors
Issue
-
Systems running RHEL 5 report the following error when using yum or trying to register the system with RHN:
"The certificate is expired. Please ensure you have the correct certificate and you system time is correct." -
The cron job for
rhn-virtualization-hostgenerates the following message:up2date_client.up2dateErrors.SSLCertificateVerifyFailedError: The certificate is expired. Please ensure you have the correct certificate and your system time is correct. -
rhn_checkfails with error similar to:[('SSL routines', 'SSL3_GET_SERVER_CERTIFICATE', 'certificate verify failed')] -
ssl certificate failed verificationmessages appear in the log every 2 seconds -
Cannot install or update software packages via
yum, which returns the following error:up2date_client.up2dateErrors.SSLCertificateVerifyFailedError: The certificate is expired. Please ensure you have the correct certificate and your system time is correct. -
rhn_registerfails with the error :rhn_register ERROR: can not find RHNS CA file: /usr/share/rhn/RHN-ORG-TRUSTED-SSL-CERT The certificate /usr/share/rhn/RHNS-CA-CERT is expired. Please ensure you have the correct certificate and your system time is correct.
Environment
- Red Hat Enterprise Linux (RHEL) 5.4 or earlier
- Red Hat Network (RHN) Classic
- rhn-client-tools of a version prior to 0.4.19-17.el5_3.1 (RHEL5.3 Advanced mission critical only)
- rhn-client-tools of a version prior to 0.4.20-33.el5 (RHEL5)
- up2date of a version prior to 4.9.1-30.el4 (RHEL4)
- up2date of a version prior to 4.5.5-18.el3 (RHEL3)
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
