Need help?

Our experts have had an average response time of 13.14 minutes in February 2024 to fix urgent issues.

We will keep your servers stable, secure, and fast at all times for one fixed price.

Yum certificate verify failed : How to eliminate this error?

by | Dec 5, 2019

Receiving the error ‘yum certificate verify failed’ while updating packages using yum? Here’s how we fix it.

Here at Bobcares, we often receive requests to resolve the error SSL certificate failed verification as part of our Server Management Services.

Today, let’s discuss this error in detail and see how our Support Engineers fix it for our customers.

 

Why yum certificate verify failed?

We’ve seen many of our customers experiencing such errors due to certificate expiration, mismatch in server date and time, and so on.

Here is a sample error message screenshot.

Here the problem happened while the user tried to update the yum. The main reason for this error is the corrupted rhn-client-tools package.

We eliminated this problem by reinstalling rhn-client-tools from the RedHat site. Another quick fix suggested by our Engineers is disabling the SSLVerify and plugin yum-rhn-plugin.

Now, Let’s see how our Support Engineers fix the error yum certificate verify failed with different methods.

 

How can we rectify this error?

At Bobcares, where we have more than a decade of expertise in managing servers, we see many customers face problems with the error ‘SSL certificate failed verification’ while updating yum.

Now, let’s see the major reasons for this error to occur and how our Support Engineers fix the error via various methods.

 

Certificate expired

Recently, one of our customers approached us with ‘yum‘ failing with the error ‘certificate verifies failed‘ when he executed the following command.

yum update --verbose

He also claims that previously the command was properly working. While checking, we could trace that the yum certificate has been expired, and so we assisted the customer by updating it.

1. We then downloaded the new latest package from Redhat.

RHEL 8: https://access.redhat.com/downloads

2. After that we installed the package:

rpm -Uvh rhn*.rpm

3. Finally, we updated the packages:

rpm -Uvh up2date*.rpm

The certificate is now updated and the error has eliminated.

 

Server time and nameserver

While running the command yum check-update customer received the error The SSL certificate failed verification. On further checking our Support Engineers could trace that the issue is with the incorrect server time.

So, we have checked it with the following command:

ntpdate -qv pt.pool.ntp.org

After correcting the server’s date and time, which then allowed the certificate to be successfully validated for the rhnplugin. This helped us to resolve the problem with yum.

Another reason for this error is that the server should be able to resolve repo/cln websites properly.

So If the customer uses custom resolvers then it must be disabled in /etc/resolv.conf. Hence, we set 8.8.4.4 instead of custom resolvers.

nameserver 8.8.4.4

This also rectified the problem of certificate failed verification.

 

A quick fix:

In certain cases the yum update have to be done immediately, in such cases, we can go for a temporary fix. One of our customers contacted us with the following error message. He received it while updating the CentOS 7 using yum update command.

The SSL certificate failed verification

Initially, we removed cached packages and headers using the following command:

yum clean all

Then as a quick fix, we disabled sslverify in the configuration file /etc/yum.conf

sslverify=false

Since the parameter has not been taken into account by the plugin yum-rhn-plugin. Then we disabled the plugin yum-rhn-plugin by editing in the configuration file using the command

vim /etc/yum/pluginconf.d/rhnplugin.conf

Within this file, we changed

enabled=1

to

enabled=0

After editing and saving this file we were able to update yum correctly. This is actually a temporary fix in which the certificate’s verification was disabled.

 

[Need more assistance on Yum certificate verify failed? We’ll help you]

Conclusion

In short, Yum certificate verify failed error occurs while running yum update. This occurs due to certificate expiration, mismatch in server date and time and so on. In today’s article, we discussed how our Support Engineers fix this error for our customers.

PREVENT YOUR SERVER FROM CRASHING!

Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

GET STARTED

var google_conversion_label = "owonCMyG5nEQ0aD71QM";

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *

Categories

Tags

Privacy Preference Center

Necessary

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

PHPSESSID - Preserves user session state across page requests.

gdpr[consent_types] - Used to store user consents.

gdpr[allowed_cookies] - Used to store user allowed cookies.

PHPSESSID, gdpr[consent_types], gdpr[allowed_cookies]
PHPSESSID
WHMCSpKDlPzh2chML

Statistics

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_ga - Preserves user session state across page requests.

_gat - Used by Google Analytics to throttle request rate

_gid - Registers a unique ID that is used to generate statistical data on how you use the website.

smartlookCookie - Used to collect user device and location information of the site visitors to improve the websites User Experience.

_ga, _gat, _gid
_ga, _gat, _gid
smartlookCookie
_clck, _clsk, CLID, ANONCHK, MR, MUID, SM

Marketing

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

IDE - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

test_cookie - Used to check if the user's browser supports cookies.

1P_JAR - Google cookie. These cookies are used to collect website statistics and track conversion rates.

NID - Registers a unique ID that identifies a returning user's device. The ID is used for serving ads that are most relevant to the user.

DV - Google ad personalisation

IDE, test_cookie, 1P_JAR, NID, DV, NID
IDE, test_cookie
1P_JAR, NID, DV
NID
hblid

Security

These are essential site cookies, used by the google reCAPTCHA. These cookies use an unique identifier to verify if a visitor is human or a bot.

SID, APISID, HSID, NID, PREF
SID, APISID, HSID, NID, PREF