<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic https Webhook with self signed certificate in Network Platform API</title>
    <link>https://community.cisco.com/t5/network-platform-api/https-webhook-with-self-signed-certificate/m-p/5415496#M2786</link>
    <description>&lt;P&gt;Hi, We have now been struggling for some hours trying to figure out the problem with receiving webhooks. We have it working with http but with https it keeps failing.&lt;/P&gt;&lt;P&gt;We have installed a Self signed certificate and it seems like that is the problem?&lt;/P&gt;&lt;P&gt;We have it working on another receiver with "CA-cert"&lt;/P&gt;&lt;P&gt;We have done some packet capture from both receivers and the one with Self-Signed (that fails) looks like this:&lt;/P&gt;&lt;P&gt;4 0.031803 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TLSv1.2 208 Client Hello&lt;BR /&gt;5 0.031823 &amp;lt;our receiver ip&amp;gt; 209.206.xx.xx TCP 66 443 → 48422 [ACK] Seq=1 Ack=143 Win=30080 Len=0 TSval=2168442384 TSecr=3587969089&lt;BR /&gt;6 0.034570 &amp;lt;our receiver ip&amp;gt; 209.206.xx.xx TLSv1.2 1907 Server Hello, Certificate, Server Key Exchange, Server Hello Done&lt;BR /&gt;7 0.065342 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TCP 66 48422 → 443 [ACK] Seq=143 Ack=1369 Win=32000 Len=0 TSval=3587969098 TSecr=2168442387&lt;BR /&gt;8 0.065371 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TCP 66 48422 → 443 [ACK] Seq=143 Ack=1842 Win=34816 Len=0 TSval=3587969098 TSecr=2168442387&lt;BR /&gt;&lt;STRONG&gt;9 0.117227 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TLSv1.2 73 Alert (Level: Fatal, Description: Certificate Unknown)&lt;/STRONG&gt;&lt;/P&gt;&lt;P&gt;Is it possible to make it work with self signed cert?&lt;/P&gt;&lt;P&gt;regards&lt;/P&gt;&lt;P&gt;///A&lt;/P&gt;</description>
    <pubDate>Wed, 13 Feb 2019 08:21:56 GMT</pubDate>
    <dc:creator>a.hed</dc:creator>
    <dc:date>2019-02-13T08:21:56Z</dc:date>
    <item>
      <title>https Webhook with self signed certificate</title>
      <link>https://community.cisco.com/t5/network-platform-api/https-webhook-with-self-signed-certificate/m-p/5415496#M2786</link>
      <description>&lt;P&gt;Hi, We have now been struggling for some hours trying to figure out the problem with receiving webhooks. We have it working with http but with https it keeps failing.&lt;/P&gt;&lt;P&gt;We have installed a Self signed certificate and it seems like that is the problem?&lt;/P&gt;&lt;P&gt;We have it working on another receiver with "CA-cert"&lt;/P&gt;&lt;P&gt;We have done some packet capture from both receivers and the one with Self-Signed (that fails) looks like this:&lt;/P&gt;&lt;P&gt;4 0.031803 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TLSv1.2 208 Client Hello&lt;BR /&gt;5 0.031823 &amp;lt;our receiver ip&amp;gt; 209.206.xx.xx TCP 66 443 → 48422 [ACK] Seq=1 Ack=143 Win=30080 Len=0 TSval=2168442384 TSecr=3587969089&lt;BR /&gt;6 0.034570 &amp;lt;our receiver ip&amp;gt; 209.206.xx.xx TLSv1.2 1907 Server Hello, Certificate, Server Key Exchange, Server Hello Done&lt;BR /&gt;7 0.065342 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TCP 66 48422 → 443 [ACK] Seq=143 Ack=1369 Win=32000 Len=0 TSval=3587969098 TSecr=2168442387&lt;BR /&gt;8 0.065371 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TCP 66 48422 → 443 [ACK] Seq=143 Ack=1842 Win=34816 Len=0 TSval=3587969098 TSecr=2168442387&lt;BR /&gt;&lt;STRONG&gt;9 0.117227 209.206.xx.xx &amp;lt;our receiver ip&amp;gt; TLSv1.2 73 Alert (Level: Fatal, Description: Certificate Unknown)&lt;/STRONG&gt;&lt;/P&gt;&lt;P&gt;Is it possible to make it work with self signed cert?&lt;/P&gt;&lt;P&gt;regards&lt;/P&gt;&lt;P&gt;///A&lt;/P&gt;</description>
      <pubDate>Wed, 13 Feb 2019 08:21:56 GMT</pubDate>
      <guid>https://community.cisco.com/t5/network-platform-api/https-webhook-with-self-signed-certificate/m-p/5415496#M2786</guid>
      <dc:creator>a.hed</dc:creator>
      <dc:date>2019-02-13T08:21:56Z</dc:date>
    </item>
    <item>
      <title>Re: https Webhook with self signed certificate</title>
      <link>https://community.cisco.com/t5/network-platform-api/https-webhook-with-self-signed-certificate/m-p/5415497#M2787</link>
      <description>I'm afraid there isn't. You'd have to be able to tell the Meraki servers to trust your specific self-signed certificate to keep things reasonably secure, which you can't at the moment. Without this Meraki would have to trust any certificate upon establishing the HTTPS connection which would be a big nono.</description>
      <pubDate>Wed, 13 Feb 2019 08:32:05 GMT</pubDate>
      <guid>https://community.cisco.com/t5/network-platform-api/https-webhook-with-self-signed-certificate/m-p/5415497#M2787</guid>
      <dc:creator>BrechtSchamp</dc:creator>
      <dc:date>2019-02-13T08:32:05Z</dc:date>
    </item>
  </channel>
</rss>

