[Fusioninventory-user] cacert.pem on Windows Agents

Kevin COUSIN kcousin at globalsp.com
Fri Jan 10 13:32:52 UTC 2014

> > Must I download this file manually ?
> That's the default behaviour of LWP to try to load the certificate bundle
> provided by the Mozilla::CA if you don't provide your own CA certificate.
> We may eventually also include this perl module in the windows
> distribution, but that will only benefit to people using a server
> certificate signed by some well-known CA such as Thawte or Verisign.
> What you must do is either:
> 1) disable https completly
> 2) disable server certificate checking
> 3) distribute the server certificate on the client, and use it as a
> pseudo-AC certificate
> 4) distribute the actual AC certificate on the client
> If you don't understand what an AC is, you'd better use solution 2 to
> avoid troubles.

I don't understand why it's now needed to send an inventory to an https GLPI instance. I don't have this behavior in 2.2.x agent. As a workaround, I configure our GLPI to allow HTTP request on the fusioninventory URL.



More information about the Fusioninventory-user mailing list