[RHUI] Error 403- Forbidden when running yum update on RHEL7 Host connected to RHUI Azure

Solution Unverified - Updated -

Issue

  • Error when running yum command on RHEL7 Host connected to RHUI Azure
$ yum repolist
Loaded plugins: langpacks, product-id, search-disabled-repos, versionlock, yum_rhui_plugin
https://rhui4-1.microsoft.com/pulp/repos/content/dist/rhel/rhui/server/7/7Server/x86_64/ansible/2/os/repodata/repomd.xml: [Errno 14] HTTPS Error 403 - Forbidden
Trying other mirror.
  • Using curl command to connect to the Microsoft RHUI4 is getting this result:
$ curl -v --proxy proxy.test.com:9090  https://rhui4-1.microsoft.com/pulp/repos/content/dist/rhel/rhui/server/7/7Server/x86_64/ansible/2/os/repodata/repomd.xml --cert /etc/pki/rhui/product/content-base.crt --key /etc/pki/rhui/private/key-base.pem
* Uses proxy env variable no_proxy == 'example1.test.com,172.17.103.4,localhost'
*   Trying 136.153.28.150:9090...
* Connected to proxy.test.act.gov.au (136.153.28.150) port 9090 (#0)
* allocate connect buffer!
* Establish HTTP proxy tunnel to rhui4-1.microsoft.com:443
> CONNECT rhui4-1.microsoft.com:443 HTTP/1.1
> Host: rhui4-1.microsoft.com:443
> User-Agent: curl/7.70.0
> Proxy-Connection: Keep-Alive
>
< HTTP/1.0 200 Connection Established
<
* Proxy replied 200 to CONNECT request
* CONNECT phase completed!
* Initializing NSS with certpath: sql:/etc/pki/nssdb
*   CAfile: none
  CApath: none
* loaded libnssckbi.so
* CONNECT phase completed!
* CONNECT phase completed!
* NSS: client certificate from file
*       subject: OU=Azure public,O=Azure,CN=Redhat Update Infrastructure (rhel7-base-20230717)
*       start date: Jul 17 13:16:26 2023 GMT
*       expire date: Jul 16 13:16:26 2025 GMT
*       common name: Redhat Update Infrastructure (rhel7-base-20230717)
*       issuer: OU=Azure,O=Microsoft,L=Redmond,ST=Washington,C=US
* ALPN, server accepted to use http/1.1
* SSL connection using TLS_AES_256_GCM_SHA384  <==================================== using TLSv1.3
* Server certificate:
*       subject: CN=rhui-1.microsoft.com,O=Microsoft Corporation,L=Redmond,ST=WA,C=US
*       start date: Oct 15 21:22:06 2023 GMT
*       expire date: Jun 27 23:59:59 2024 GMT
*       common name: rhui-1.microsoft.com
*       issuer: CN=Microsoft Azure ECC TLS Issuing CA 02,O=Microsoft Corporation,C=US
> GET /pulp/repos/content/dist/rhel/rhui/server/7/7Server/x86_64/ansible/2/os/repodata/repomd.xml HTTP/1.1
> Host: rhui4-1.microsoft.com
> User-Agent: curl/7.70.0
> Accept: */*
>
* Mark bundle as not supporting multiuse
< HTTP/1.1 403 Forbidden
< Server: nginx/1.20.1
< Date: Wed, 10 Apr 2024 05:10:18 GMT
< Content-Type: text/html
< Content-Length: 153
< Connection: keep-alive
<
<html>
<head><title>403 Forbidden</title></head>

Environment

  • RHUI Azure 4
  • RHEL7.9

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content