Self-Signed Certificate in Certificate Chain

Situation

A firewall returns the following error for an executed backup plan: SSL certificate problem: self-signed certificate in certificate chain.

Cause

The certificate is self-signed, so it is non-trusted by default.

Solution

Add Certificate Contents to .cacerts.pem File Manually

To add contents of the certificate that produced such error, proceed as follows:

  1. Convert your .cer certificate file to .pem certificate. To do this, use the following command in terminal emulator: openssl x509 -in certname.cer -inform DER -out certname.pem -outform PEM
  2. Open the new file (certname.pem) in any text editor.
  3. Copy the contents of the file.
  4. Navigate to /Applications/backupname.app/Contents/Resources/share.
  5. Find the .cacerts.pem to edit it in a text editor.
  6. Scroll to the end of the .cacerts.pem file, and paste the certificate contents of the certname.pem file.
  7. Save the .cacerts.pem file.
https://git.cloudberrylab.com/egor.m/doc-help-kb.git