HearBeat monitor throwing IP SANS error

rohitarorait82 · May 13, 2021, 2:15pm

Hi All,

I am trying to implement hearbeat monitor for one of my application and I am getting below error.

I have done below configuration

- type: http

  # List or urls to query
  urls: ["https://x.x.x.x:9090"]
  # Configure task schedule
  schedule: '@every 10s'
  InsecureSkipVerify: true
  # Total test connection and data exchange timeout
  #timeout: 16s
  ssl:
  # Certificate Authorities
   certificate_authorities:
     - |
       -----BEGIN CERTIFICATE-----
       some base64 encoded value
-----END CERTIFICATE-----

Error
Get "https://x.x.x.x:9090": x509: cannot validate certificate for x.x.x.x because it doesn't contain any IP SANs

One of the reason can be cn name is different than the host name, but I am not whether this is the reason and also how to resolve it

Andrew_Cholakian1 · May 13, 2021, 8:17pm

It looks like you're pinging an IP instead of a domain. You'll need the URL to be the actual hostname of the service you're testing rather than an IP. TLS certificates only match domains not IPs unless you have specified in IP subject alternative name which you have not.

Is there a reason you're pinging the IP and not the hostname?

system · June 10, 2021, 10:18pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Filebeat Cant connect: ERROR x509: cannot validate certificate for x.xx.xx.xxx because it doesn't contain any IP SANs Beats filebeat	12	10436	May 10, 2018
Cannot validate certificate for X.X.X.X because it doesn’t contain any IP SANs Beats	2	4331	July 20, 2018
Heartbeat: Ignore SSL errors Beats heartbeat	4	5263	April 19, 2017
Monitor HTTPS(SSL) url's Beats heartbeat	4	2034	May 18, 2017
Merticbeat Error dialing x509: certificate is valid for 127.0.0.1, not 172.16.0.204 Beats metricbeat	3	2844	April 7, 2022

HearBeat monitor throwing IP SANS error

Related topics