2020628 – Prometheus alertmanager reports msg="Error on notify" Post https://xxxx:8444/api/prometheus_receiver: x509: cannot validate certificate for XXX because it doesn't contain any IP SANs"

Bug 2020628 - Prometheus alertmanager reports msg="Error on notify" Post https://xxxx:8444/api/prometheus_receiver: x509: cannot validate certificate for XXX because it doesn't contain any IP SANs"

Summary: Prometheus alertmanager reports msg="Error on notify" Post https://xxxx:8444...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	Cephadm
Sub Component:
Version:	4.1
Hardware:	x86_64
OS:	Linux
Priority:	unspecified
Severity:	high
Target Milestone:	---
Target Release:	5.1z1
Assignee:	Adam King
QA Contact:	Sunil Angadi
Docs Contact:	Mary Frances Hull
URL:
Whiteboard:
Depends On:	1902212
Blocks:	1820257 2085458
TreeView+	depends on / blocked

Reported:	2021-11-05 12:51 UTC by Francesco Pantano
Modified:	2022-09-06 05:23 UTC (History)
CC List:	23 users (show)
Fixed In Version:	ceph-16.2.7-106.el8cp
Doc Type:	Enhancement
Doc Text:	.Users can now set up the Alertmanager to not verify certificates Previously, the Alertmanager would report errors about verifying the certificates if they used the fully-qualified domain name (FQDN) instead of IPs or if they could not be verified for any other reason. With this release, by default, the Alertmanager is deployed with `insecure_skip_verify` parameter as `true` to skip certificate verification. You can turn on the certification by setting the `secure` parameter to `true` in the Alertmanager service specification file: .Example ---- service_type: alertmanager spec: secure: true ----
Clone Of:	1978869
Clones:	2038798 (view as bug list)
Environment:
Last Closed:	2022-05-18 10:38:15 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Ceph Project Bug Tracker	55333	None	None	None	2022-04-14 09:45:53 UTC
Github	ceph ceph pull 45860	None	open	mgr/cephadm: allow setting insecure_skip_verify to true for alertmanager	2022-04-14 11:43:45 UTC
Red Hat Issue Tracker	RHCEPH-2181	None	None	None	2021-11-05 12:55:24 UTC
Red Hat Product Errata	RHBA-2022:4622	None	None	None	2022-05-18 10:38:36 UTC

Comment 19 errata-xmlrpc 2022-05-18 10:38:15 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 5.1 Bug Fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2022:4622

Note You need to log in before you can comment on or make changes to this bug.

adking
agunn
aschoen
ceph-eng-bugs
ceph-qe-bugs
dsavinea
epuertat
gabrioux
gfidente
gjose
gmeno
johfulto
mhackett
mhull
mmuench
nthomas
rkhambad
rmandyam
sangadi
sorkim
tserlin
vereddy
ykaul