05-10-2017 06:09 AM
Warning: The updater could not validate the server certificate. Server certificate not validated - unable to get local issuer certificate
Version: 9.7.0-125
Solved! Go to Solution.
05-10-2017 07:09 AM
Hi,
The error is usually temporary, you can confirm if the updates are working correctly by reviewing the updater_logs.
You can also turn off certificate validation using the command "updateconfig".
CLI: updateconfig, then choose the following
Choose the operation you want to perform:
- SETUP - Edit update configuration.
- VALIDATE_CERTIFICATES - Validate update server certificates
- TRUSTED_CERTIFICATES - Manage trusted certificates for updates
[]> validate_certificates
Should server certificates from Cisco update servers be validated?
[Yes]> no
Then commit the changes using the CLI command "commit".
If updates are working as expected for all scanning engines and if you haven't seen alerts like these multiple times then it can be safely ignored.
As your device (by default) reaches out every 5 minutes for an update, it failed to connect due to the fact that it was having validation issues with our update server and triggered the below alerts message which you may have received.
Thank You!
Libin Varghese
05-10-2017 07:08 AM
Now It's OK.
#updateconfig
VALIDATE_CERTIFICATES
yes
10X
05-10-2017 07:09 AM
Hi,
The error is usually temporary, you can confirm if the updates are working correctly by reviewing the updater_logs.
You can also turn off certificate validation using the command "updateconfig".
CLI: updateconfig, then choose the following
Choose the operation you want to perform:
- SETUP - Edit update configuration.
- VALIDATE_CERTIFICATES - Validate update server certificates
- TRUSTED_CERTIFICATES - Manage trusted certificates for updates
[]> validate_certificates
Should server certificates from Cisco update servers be validated?
[Yes]> no
Then commit the changes using the CLI command "commit".
If updates are working as expected for all scanning engines and if you haven't seen alerts like these multiple times then it can be safely ignored.
As your device (by default) reaches out every 5 minutes for an update, it failed to connect due to the fact that it was having validation issues with our update server and triggered the below alerts message which you may have received.
Thank You!
Libin Varghese
10-10-2018 04:39 AM
10-27-2023 12:48 AM
Should I leave this setting as no or is it necessary to turn this VALIDATE_CERTIFICATES setting back on afterwards?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide