microsoft
[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.c:1007)'
I am receiving error the following error when trying to connect to our Azure Artifacts instance via pip while behind my corporate firewall. I know that we use decryption in our firewalls and we need to trust our internal CA authority for connectivity. Is there a solution for that in either this package or Credential provider?
I am using python 3.10.11 and pip version 23.3.1 on Windows 10 21H2 Error - [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.c:1007)'
I receive the error when using either of the following commands
pip install azure-mgmt-search==9.1.0 --use-feature=truststore pip install azure-mgmt-search==9.1.0
We're seeing the same issue. @mharris4-eqr : Did you find any solution to this?
This is likely due to pip rather than artifacts-keyring.
Can you capture the output of adding -vvv to those commands? It might have private information in the output, so censor anything you need to, but it'll be interesting to see exactly who (isn't) using the system certificate store properly.
My issue was twofold -
-
We were using an older version of pip that wouldn’t use the system store on windows. But to update pip we had to use pip so we had to update pip config to point at our internal pki cert then update pip
-
Once pip was updated and artifacts-keyring was installed I had to update cacerts.pem to include my pki certs for it to work
Monty Harris
Cloud Architect
815.252.6858
Equity Residential
Two N. Riverside Plaza, Suite 400
Chicago, IL 60606
EquityResidential.com - live remarkably
https://www.linkedin.com/company/equity-residential https://www.facebook.com/equityapartments/?ref=page_internal https://www.glassdoor.com/Overview/Working-at-Equity-Residential-EI_IE3635.11,29.htm https://www.instagram.com/eqrcareers/?hl=en https://twitter.com/EquityRes
On Mon, Jul 8, 2024 at 08:43 Steve Dower @.***> wrote:
This is likely due to pip rather than artifacts-keyring. Can you capture the output of adding -vvv to those commands? It might have private information in the output, so censor anything you need to, but it'll be interesting to see exactly who ZjQcmQRYFpfptBannerStart This Message Is From an External Sender This message came from outside your organization.
ZjQcmQRYFpfptBannerEnd
This is likely due to pip rather than artifacts-keyring.
Can you capture the output of adding -vvv to those commands? It might have private information in the output, so censor anything you need to, but it'll be interesting to see exactly who (isn't) using the system certificate store properly.
— Reply to this email directly, view it on GitHub [github.com] https://urldefense.com/v3/__https://github.com/microsoft/artifacts-keyring/issues/68*issuecomment-2213974816__;Iw!!Cn8_1fm4KA!NvrkD22HNTzqU4_rH4kM8XUpOSAqzPN4cH7zdv5hHOkluquV2sKQH2lMjO7YGCi_aXBEybk5Nbh1Joy_zTST6A$, or unsubscribe [github.com] https://urldefense.com/v3/__https://github.com/notifications/unsubscribe-auth/A6KUOFU7FDG3XCDEESC6YADZLKCNPAVCNFSM6AAAAABJQFCXQKVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDEMJTHE3TIOBRGY__;!!Cn8_1fm4KA!NvrkD22HNTzqU4_rH4kM8XUpOSAqzPN4cH7zdv5hHOkluquV2sKQH2lMjO7YGCi_aXBEybk5Nbh1Jox_Xt54uQ$ . You are receiving this because you were mentioned.Message ID: @.***>
Looks like this answered. Closing - please reopen if you think this is still an issue on the artifacts-keyring
