SSL error when create redis cluster at Ansible Automation Platform

Solution Verified - Updated -

Issue

When running the installer, it fails to create the Redis cluster due to the SSL certificate presented by the Redis node is not trusted by the host that is running the command.

TASK [ansible.automation_platform_installer.redis : Expand redis-cli options for mTLS if necessary] ***
ok: [10.0.109.205] => {"ansible_facts": {"_redis_cli_options": "-h 10.0.109.205 -p 6379 --tls --cert /etc/ansible-automation-platform/redis/server.crt --key /etc/ansible-automation-platform/redis/server.key"}, "changed": false}
skipping: [10.0.110.189] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.108.13] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.109.177] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.108.48] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.111.22] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}

TASK [ansible.automation_platform_installer.redis : Create the redis cluster] ***
skipping: [10.0.110.189] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.108.13] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.109.177] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.108.48] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
skipping: [10.0.111.22] => {"changed": false, "false_condition": "inventory_hostname == groups[\"redis\"][0]", "skip_reason": "Conditional result was False"}
fatal: [10.0.109.205]: FAILED! => {"changed": false, "cmd": ["redis-cli", "-h", "10.0.109.205", "-p", "6379", "--tls", "--cert", "/etc/ansible-automation-platform/redis/server.crt", "--key", "/etc/ansible-automation-platform/redis/server.key", "--cluster", "create", "10.0.109.205:6379", "10.0.110.189:6379", "10.0.108.13:6379", "10.0.109.177:6379", "10.0.108.48:6379", "10.0.111.22:6379", "--cluster-replicas", "1", "--cluster-yes"], "delta": "0:00:00.035101", "end": "2025-01-14 17:54:37.357726", "msg": "non-zero return code", "rc": 1, "start": "2025-01-14 17:54:37.322625", "stderr": "Could not connect to Redis at 10.0.109.205:6379: SSL_connect failed: certificate verify failed", "stderr_lines": ["Could not connect to Redis at 10.0.109.205:6379: SSL_connect failed: certificate verify failed"], "stdout": "", "stdout_lines": []}

NO MORE HOSTS LEFT *************************************************************

TASK [Run repo_management (teardown)] ******************************************

NO MORE HOSTS LEFT *************************************************************

NO MORE HOSTS LEFT *************************************************************

PLAY RECAP *********************************************************************
10.0.108.13                : ok=111  changed=11   unreachable=0    failed=0    skipped=115  rescued=0    ignored=3
10.0.108.21                : ok=74   changed=4    unreachable=0    failed=0    skipped=109  rescued=0    ignored=2
10.0.108.48                : ok=109  changed=11   unreachable=0    failed=0    skipped=118  rescued=0    ignored=2
10.0.108.74                : ok=24   changed=1    unreachable=0    failed=0    skipped=40   rescued=0    ignored=0
10.0.109.177               : ok=111  changed=11   unreachable=0    failed=0    skipped=115  rescued=0    ignored=3
10.0.109.205               : ok=134  changed=13   unreachable=0    failed=1    skipped=159  rescued=0    ignored=3
10.0.110.155               : ok=82   changed=6    unreachable=0    failed=0    skipped=64   rescued=0    ignored=1
10.0.110.189               : ok=111  changed=11   unreachable=0    failed=0    skipped=115  rescued=0    ignored=3
10.0.111.22                : ok=108  changed=11   unreachable=0    failed=0    skipped=118  rescued=0    ignored=2
localhost                  : ok=0    changed=0    unreachable=0    failed=0    skipped=1    rescued=0    ignored=0

Environment

Ansible Automation Platform 2.5 rpm with Redis cluster

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content