HearBeat monitor throwing IP SANS error

rohitarorait82 · May 13, 2021, 2:15pm

Hi All,

I am trying to implement hearbeat monitor for one of my application and I am getting below error.

I have done below configuration

- type: http

  # List or urls to query
  urls: ["https://x.x.x.x:9090"]
  # Configure task schedule
  schedule: '@every 10s'
  InsecureSkipVerify: true
  # Total test connection and data exchange timeout
  #timeout: 16s
  ssl:
  # Certificate Authorities
   certificate_authorities:
     - |
       -----BEGIN CERTIFICATE-----
       some base64 encoded value
-----END CERTIFICATE-----

Error
Get "https://x.x.x.x:9090": x509: cannot validate certificate for x.x.x.x because it doesn't contain any IP SANs

One of the reason can be cn name is different than the host name, but I am not whether this is the reason and also how to resolve it

Andrew_Cholakian1 · May 13, 2021, 8:17pm

It looks like you're pinging an IP instead of a domain. You'll need the URL to be the actual hostname of the service you're testing rather than an IP. TLS certificates only match domains not IPs unless you have specified in IP subject alternative name which you have not.

Is there a reason you're pinging the IP and not the hostname?

system · June 10, 2021, 10:18pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Filebeat Cant connect: ERROR x509: cannot validate certificate for x.xx.xx.xxx because it doesn't contain any IP SANs Beats filebeat	12	10777	May 10, 2018
Cannot validate certificate for X.X.X.X because it doesn’t contain any IP SANs Beats	2	4471	July 20, 2018
Heartbeat: Ignore SSL errors Beats heartbeat	4	5381	April 19, 2017
Monitor HTTPS(SSL) url's Beats heartbeat	4	2062	May 18, 2017
HTTPS not working for subject alternative name (SAN) Beats heartbeat	2	434	February 15, 2019

HearBeat monitor throwing IP SANS error

Related topics