Use self signed certificate with cURL?

by

This is just another version of this question: Using openssl to get the certificate from a server

Or put more bluntly:

Using curl –cert is wrong, it is for client certificates.

First, get the the certs your server is using:

$ echo quit | openssl s_client -showcerts -servername server -connect server:443 > cacert.pem

(-servername is necessary for SNI so that you get the right virtual server’s certificate back)

Then make your curl command line use that set to verify the server in subsequent operations:

$ curl --cacert cacert.pem https://server/ [and the rest]

More Related Contents:

  1. Security consequences of disabling CURLOPT_SSL_VERIFYHOST (libcurl/openssl)
  2. How to generate a self-signed SSL certificate using OpenSSL?
  3. curl: (60) SSL certificate problem: unable to get local issuer certificate
  4. Installation SSL in wamp server: Error in httpd-ssl.conf
  5. How can I generate a self-signed certificate with SubjectAltName using OpenSSL? [closed]
  6. Docker container SSL certificates
  7. How do I restore a missing IIS Express SSL Certificate?
  8. Third-Party Signed SSL Certificate for localhost or 127.0.0.1?
  9. How to install OpenSSL in windows 10?
  10. curl – Is data encrypted when using the –insecure option?
  11. curl: (35) error:1408F10B:SSL routines:ssl3_get_record:wrong version number
  12. How to add subject alernative name to ssl certs?
  13. cURL requires CURLOPT_SSL_VERIFYPEER=FALSE
  14. Difference between self-signed CA and self-signed certificate [closed]
  15. Why does Python requests ignore the verify parameter?
  16. curl: Unknown error (0x80092012) – The revocation function was unable to check revocation for the certificate
  17. Generating client side certificates in browser and signing on server
  18. Convert .pem to .crt and .key
  19. SSL Connection / Connection Reset with IISExpress
  20. A problem occurred somewhere in the SSL/TLS handshake
  21. Java SSL: how to disable hostname verification
  22. Building libcurl with SSL support on Windows
  23. Connecting to a Websphere MQ in Java with SSL/Keystore
  24. OpenSSL: unable to verify the first certificate for Experian URL
  25. Twilio PHP – SSL certificate: self signed certificate in certificate chain
  26. SSL errors using MailChimp’s API
  27. Google App Script – MySql 8 – JDBC Connection Failed
  28. Jenkins Windows slave connection getting terminated with java.nio.channels.ClosedChannelException
  29. How can I set SignalR in Android Studio to ignore SSL issues for delvelopement
  30. PayPal IPN acknowledgements failing with SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure

Leave a Comment