1

I've installed Pivotal's Ops Manager. When I try to point bosh at it's director I get:

$ bosh target 10.120.7.11
Target set to 'p-bosh'
Invalid SSL Cert. Use --ca-cert option when setting target to specify SSL certificate

The certs were generated automatically by the install. How can get past this error?

Eddie
  • 9,696
  • 4
  • 45
  • 58
Neil H Watson
  • 1,002
  • 1
  • 14
  • 31
  • Use the generated (selfsigned?) certificate and pass it using the `--ca-cert` parameter? – Robert Nov 04 '16 at 15:26
  • 1
    If you click on the tile where you configure BOSH and the IaaS settings, there should be a tab to see credentials. Should be able to find the CA cert there. – Amit Kumar Gupta Nov 06 '16 at 21:01

2 Answers2

5

On the Ops Mgr, the "root_ca_cert.yml' is located in /var/tempest/workspaces/default. Use that as follows .. 

$ bosh target --ca-cert /var/tempest/workspaces/default/root_ca_cert.yml <director-ip>
K.AJ
  • 1,292
  • 11
  • 17
0

Apparently, This appears to be happening in BOSH CLI v1. They fixed it in CLI V2 (as of Sep 2017)

If you are using CLI V1 pointing against a BOSH director, then make sure you mention the flag "--ca-cert" before director IP. The reason is they treat ca-cert as global flag in V1.

Balaji Boggaram Ramanarayan
  • 7,731
  • 6
  • 43
  • 46