https://community.cisco.com/t5/services-discussions/ssl-error-for-token-in-python/m-p/3561134#M224 <HTML><HEAD></HEAD><BODY><P>Hello All</P><P></P><P>&nbsp;&nbsp;&nbsp;&nbsp; I have asked this in a few different places but I think I finally have an understanding enough to make it a dedicated discussion.&nbsp; I recently attempted to register this API -- Cisco PSIRT openVuln API --.&nbsp; I am able to get the key on a MAC in Python 2.7 however not on windows in any version or 3.x on Mac.&nbsp; After a lot of screen time and a lot of forums I think the issue is this....&nbsp; The certificate presented by Cisco is not trusted using the 3.x SSL process in Python.&nbsp; I can get the following line to work in Python <EM><SPAN>x = client.request("</SPAN><A class="jive-link-external-small" href="https://www.google.com" rel="nofollow" target="_blank">https://www.google.com</A><SPAN>")</SPAN></EM> without issue.&nbsp; I am not able to perform this on the cisco url <EM><SPAN>x = client.request("</SPAN><A class="jive-link-external-small" href="https://www.cisco.com" rel="nofollow" target="_blank">https://www.cisco.com</A><SPAN>")</SPAN></EM>.</P><P></P><P>I see the following error when attempting any https address on Cisco.com</P><P></P><P>ssl.SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:833)</P><P></P><P></P><P>This takes me to my question.&nbsp; If I am correct and I am not able to authenticate any Cisco certificate using the SSL process in the current version of Python how would I add that? </P><P></P><P>I am standing on the shoulders of giants in the below posts to make this question happen. Thanks all!</P><P></P><P></P><P><A href="https://community.cisco.com/message/293062">Re: What values for Auth URL</A></P><P><A href="https://community.cisco.com/thread/64355">PSIRT - openVuln API Authorization Error</A></P></BODY></HTML> Tue, 12 Jun 2018 18:51:26 GMT Nathan Gageby 2018-06-12T18:51:26Z https://community.cisco.com/t5/services-discussions/ssl-error-for-token-in-python/m-p/3561134#M224 <HTML><HEAD></HEAD><BODY><P>Hello All</P><P></P><P>&nbsp;&nbsp;&nbsp;&nbsp; I have asked this in a few different places but I think I finally have an understanding enough to make it a dedicated discussion.&nbsp; I recently attempted to register this API -- Cisco PSIRT openVuln API --.&nbsp; I am able to get the key on a MAC in Python 2.7 however not on windows in any version or 3.x on Mac.&nbsp; After a lot of screen time and a lot of forums I think the issue is this....&nbsp; The certificate presented by Cisco is not trusted using the 3.x SSL process in Python.&nbsp; I can get the following line to work in Python <EM><SPAN>x = client.request("</SPAN><A class="jive-link-external-small" href="https://www.google.com" rel="nofollow" target="_blank">https://www.google.com</A><SPAN>")</SPAN></EM> without issue.&nbsp; I am not able to perform this on the cisco url <EM><SPAN>x = client.request("</SPAN><A class="jive-link-external-small" href="https://www.cisco.com" rel="nofollow" target="_blank">https://www.cisco.com</A><SPAN>")</SPAN></EM>.</P><P></P><P>I see the following error when attempting any https address on Cisco.com</P><P></P><P>ssl.SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:833)</P><P></P><P></P><P>This takes me to my question.&nbsp; If I am correct and I am not able to authenticate any Cisco certificate using the SSL process in the current version of Python how would I add that? </P><P></P><P>I am standing on the shoulders of giants in the below posts to make this question happen. Thanks all!</P><P></P><P></P><P><A href="https://community.cisco.com/message/293062">Re: What values for Auth URL</A></P><P><A href="https://community.cisco.com/thread/64355">PSIRT - openVuln API Authorization Error</A></P></BODY></HTML> Tue, 12 Jun 2018 18:51:26 GMT https://community.cisco.com/t5/services-discussions/ssl-error-for-token-in-python/m-p/3561134#M224 Nathan Gageby 2018-06-12T18:51:26Z https://community.cisco.com/t5/services-discussions/ssl-error-for-token-in-python/m-p/3714507#M348 <P>I don't know exactly why you're getting that message, but to start from a better baseline, I'd try 2 things:</P> <OL> <LI>Use Python 3.5+</LI> <LI>Make your attempt using the latest requests</LI> </OL> <P>If you still get the error, you'll have to debug why it thinks the cert failed and probably view the cert.&nbsp; Is it bad, date, on the CRL, etc.</P> <P>&nbsp;</P> <P>You could also try with curl to see if it's the cert or Python/Requests itself that is the problem.</P> <PRE>curl -kv https://www.cisco.com</PRE> Thu, 27 Sep 2018 18:16:01 GMT https://community.cisco.com/t5/services-discussions/ssl-error-for-token-in-python/m-p/3714507#M348 thiland 2018-09-27T18:16:01Z