logstash-icinga-output OpenSSL::SSL::SSLError

This forum was archived to /woltlab and is now in read-only mode.
  • Hello

    I've implemented logstash-icinga-output. but I'm getting below error while sending passive check (OpenSSL::SSL::SSLError: certificate verify failed) . I didn't find anything about it becouse this plugin is newly released. Can you help me plese ?

    Quote


    [2017-07-26T09:45:47,887][ERROR][logstash.outputs.icinga ] Request failed {:host=>"xxxxxxx", :port=>xxxxx, :path=>"/v1/actions/process-check-result?service=xxxxxxx%21sshd", :body=>"{\"exit_status\":\"2\",\"plugin_output\":\"<35>Jul 26 09:45:47 xxxxxxx sshd[6575]: error: Could not load host key: /etc/ssh/ssh_host_dsa_key\"}", :error=>#<OpenSSL::SSL::SSLError: certificate verify failed>}

    Here is the config


    best regards

    Murat

  • 1. Is a SSL key present on the host? The name "ssh_host_dsa_key" suggests it should be DSA encrypted.

    2. Why should a SSL key be stored in /etc/ssh/?

  • Hello Jat

    Actually the mesage

    Quote

    "[2017-07-26T09:45:47,887][ERROR][logstash.outputs.icinga ] Request failed {:host=>"xxxxxxx", :port=>xxxxx, :path=>"/v1/actions/process-check-result?service=xxxxxxx%21sshd", :body=>"{\"exit_status\":\"2\",\"plugin_output\":\"<35>Jul 26 09:45:47 xxxxxxx sshd[6575]: error: Could not load host key: /etc/ssh/ssh_host_dsa_key\"}","


    getting from remote server via syslog. The actual error is getting from plugin below. I think plugin wants some certificate for using icinga api.

    Quote


    :error=>#<OpenSSL::SSL::SSLError: certificate verify failed>}

  • And still, there is a config issue. Why should a SSL key be in a SSH keys directory?