knife ssl check
knife ssl check
Use the knife ssl check
subcommand to verify the SSL configuration for the Chef server or a location specified by a URL or URI. Invalid certificates will not be used by OpenSSL.
When this command is run, the certificate files (*.crt
and/or *.pem
) that are located in the /.chef/trusted_certs
directory are checked to see if they have valid X.509 certificate properties. A warning is returned when certificates do not have valid X.509 certificate properties or if the /.chef/trusted_certs
directory does not contain any certificates.
Warning
When verification of a remote server’s SSL certificate is disabled, the chef-client will issue a warning similar to “SSL v