Command yum update output error

[Lucio Emanuel Soldo]

Hi everyone.

First off all: my wazuh server has the same connectivity to internet as my workstations, no problem about, but when I try to execute sudo yum update the following message appears:

failure: repodata/repomd.xml from wazuh: [Errno 256] No more mirrors to try.

https://packages.wazuh.com/4.x/yum/repodata/repomd.xml: [Errno 14] curl#60 - "Peer's certificate issuer has been marked as not trusted by the user."

I thinking if the operating system where is installed wazuh manager has not installed the Root and Intermediate Certificate which sing the certificate mounted at https://packages.wazuh.com/4.x/yum/repodata/repomd.xml

In contrast, when I try to browse that url from my workstation I don´t have any problem about certificate.

What do you think?

Thanks in advance!

 

[Michael Mansour]

Hi. Things I would check are:

1. is there a proxy server setup in yum.conf, if so remove it and try again

2. "yum reinstall ca-certificates" to pull down the current certs

3. use "sslverify=0" to your repo file to stop the check - this is last as it's not recommended

After trying those let us know how you go.

Michael.

[Alberto Rodriguez]

Hello

 Thanks Michael for your help! Lucio, as Michael indicates, your problem should be solved by using the `yum reinstall ca-certificates` command. Please, let us know if it doesn't work and we will explore other possibilities. 

Regards, 

Alberto R

[Lucio Emanuel Soldo]

Hi everyone!

It was not possible to solve the problem, but the problem is that exists a device between server and Internet which is making a ssl decryption, for that reason I supouse the server does not have the proper root and intermediate CA from inspection device...

I´m gonna install both, root and intermediate CA and then trying again.

Thank you very much.