Univention Bugzilla – Bug 51635
Prometheus does not talk to servers with Let's Encrypt certificate - servers are missing in the Dashboard
Last modified: 2022-07-19 17:01:37 CEST
UCS: 4.4-4 errata628 Installed: prometheus-node-exporter=1.1 4.3/admin-dashboard=1.2 4.3/prometheus=1.1 # ucr get server/role domaincontroller_slave Scenario: One of my servers uses a certificate provided by Let's Encrypt for the apache2 webserver. Expected behaviour: This server is shown in the UCS Dashboard (Grafana) just as every other server. Observed behavior: This server is missing in the UCS Dashboard (Grafana). Other servers are shown. Problem: Looks like Prometheus (or the underlying docker container) does not trust the Let's Encrypt CA root certificate. Via https://dashboardserver.example.org/metrics-prometheus/targets I can obtain the following error message: > Get https://portal.example.org:443/metrics-node/metrics/: x509: certificate signed by unknown authority Possible solution: Add the Let's Encrypt CA as a trusted CA to the Prometheus docker container.
We shoul make sure that the container / prometheus works with all root certificates accepted on the host system.
There has not been any recent activity on this bug. Has the problem been seen somewhere else as well in the meantime or has its assessment changed?
(In reply to Nico Gulden from comment #4) > There has not been any recent activity on this bug. Has the problem been > seen somewhere else as well in the meantime or has its assessment changed? There has been no change, the bug report is still valid and needs to be addressed.
OK: prometheus is using the certificates from the hosting system OK: changelog entry
Prometheus app 2.35.0-3 has been released.