Hi We renewed a certificate on a few hosts and prometheus and blackboxexporter are now not trusting the new certificate. We get a tls: failed to verify certificate: x509: certificate signed by unknown authority Browsers, curl and a few online certificate checkers trust the new certificate (chain). I think it has something to do with the new Cross-signed certificates (See https://www.sectigo.com/knowledge-base/detail/Sectigo-Public-Intermediates-and-Roots/kA0Uj0000003eovKAA) The root CRT is the "Sectigo Public Server Authentication Root R46" But I don't understand how to fix it. What do I need to change to have prometheus (and blackboxexporter) also trust the new certificate (chain)?
Kind regards, Thijs Vonk -- You received this message because you are subscribed to the Google Groups "Prometheus Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/d/msgid/prometheus-users/8a5b6595-ecfb-4a9b-9474-dbc8a2d026ccn%40googlegroups.com.
