I am trying to connect my minio instance with duplicacy but I am getting an x509 error (certificate signed by unknown authority). I have done some research on this and some suggested to use the minio:// prefix to bypass https but this is not working.
Suggestions? My domain that I am using is a self-signed cert with letsencrypt
So is it self-signed or issued by letsenceypt?
Not working how? What’s in the logs?
If it’s your CA — import and trust your root CA. Let’s encrypt certificates shall be trusted already. Maybe you need to update certificate store?
sorry, it is a letsencrypt certificate.
the logs state
2024/02/22 13:43:00 Failed to list the buckets: RequestError: send request failed caused by: Get "https://s3.site.DOMAIN.XYZ/": x509: certificate signed by unknown authority
How would i add the CA when running in docker on unraid?
I would first ensure that the certificate is indeed the one you are expecting (maybe your DNS resolver returns some other address?):
openssl s_client -showcerts -connect <hostname>:<port>
If that is Ok — try updating the certificate store:
sudo update-ca-certificates
Checkout the man page for OpenSSL — there is a command (I think “verify” to verify the full chain of trust)
openssl was being weird but i ran it in sslhopper and this is what i got
edit: I might have fixed it. I noticed that the cert in NGINX Proxy Manager was an cert that I had made > downloaded > uploaded to NPM. That cert did not have the fullchain.pem. I redid the cert with cloudflare DNS challenge.
I will wait a bit to see if the cert fixes it after it refreshes eventually. no idea what the TTL is set to
even with an updated cert this is still happening. not really sure what else to do so I might just moved to a different transfer method
Same issue? Cert chain still valid?
