Operational Defect Database

BugZero found this defect 1340 days ago.

Veeam | kb4016

Veeam Agent for Linux - Expired Sectigo RootCA Certificates

Last update date:

2/8/2023

Affected products:

Veeam Agent for Linux

Affected releases:

5.0

Fixed releases:

No fixed releases provided.

Description:

Challenge

Veeam Agent for Linux connecting to a Cloud Repository with a seemingly valid Cloud certificate fails with "certificate has expired".

Cause

On May 30th of 2020, Sectigo had an expired Root CA that will not be updated due to the age of the certificate. https://support.sectigo.com/Com_KnowledgeDetailPage?Id=kA03l00000117LT

Solution

To resolve this issue, the following steps must be performed: Navigate to the certificate location: cd /etc/ssl/certs  a. Check for AddTrust_External_Root.pem: ls

More Information

RHEL Bug 1842174: https://bugzilla.redhat.com/show_bug.cgi?id=1842174 SUSE Bug 1174673: https://bugzilla.suse.com/show_bug.cgi?id=1174673 The AddTrust External Root certificate is removed in ca-certificates-mozilla version 2.42 and later.

Additional Resources / Links

Share:

BugZero® Risk Score

What's this?

Coming soon

Status

Solved

Learn More

Search:

...