https://s3.zoneame.amazonaws.com/[SSL:CERTIFICATE_ VERIFY_FAILED]证书的SSL验证失败(_ssl.c:749) [英] SSL validation failed for https://s3.zoneame.amazonaws.com/ [SSL: CERTIFICATE_ VERIFY_FAILED] certificate verify failed (_ssl.c:749)

查看：72 发布时间：2021/4/3 19:28:16 python amazon-web-services ssl amazon-s3 aws-cli

本文介绍了https://s3.zoneame.amazonaws.com/[SSL:CERTIFICATE_ VERIFY_FAILED]证书的SSL验证失败(_ssl.c:749)的处理方法，对大家解决问题具有一定的参考价值，需要的朋友们下面随着小编来一起学习吧！

问题描述

当我运行命令 aws s3 ls 时，出现此错误:

When I run the command aws s3 ls I'm getting this error:

SSL validation failed for https://s3.zonename.amazonaws.com/ [SSL: CERTIFICATE_
VERIFY_FAILED] certificate verify failed (_ssl.c:749)

使用正常工作--no-verify-ssl

如何使其与ssl验证一起使用?

How can I make it work with ssl verficication?

aws s3 ls --debug

在下面登录:

Traceback (most recent call last):
File "C:\Program Files\Amazon\AWSCLI\runtime\lib\site-packages\urllib3\connect
ionpool.py", line 594, in urlopen
self._prepare_proxy(conn)
File "C:\Program Files\Amazon\AWSCLI\runtime\lib\site-packages\urllib3\connect
ionpool.py", line 805, in _prepare_proxy
conn.connect()
File "C:\Program Files\Amazon\AWSCLI\runtime\lib\site-packages\urllib3\connect
ion.py", line 344, in connect
ssl_context=context)
File "C:\Program Files\Amazon\AWSCLI\runtime\lib\site-packages\urllib3\util\ss
l_.py", line 344, in ssl_wrap_socket
return context.wrap_socket(sock, server_hostname=server_hostname)
File "ssl.py", line 401, in wrap_socket
File "ssl.py", line 808, in __init__
File "ssl.py", line 1061, in do_handshake
File "ssl.py", line 683, in do_handshake
ssl.SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c
:749)

推荐答案

这里的问题不是使用代理本身(AWS CLI通过设置例如

The issue here is not using proxy per se (AWS CLI allows this by setting e.g. HTTPS_PROXY environment variable) but the AWS CLI client not trusting proxy's certificate. Proxy's certificate might be self-signed, with your company set as CA (Certification Authority). AWS CLI client cannot find your company's CA root certificate in the local system's CA registry so it can't verify proxy's certificate and issues the CERTIFICATE_VERIFY_FAILED error.

要解决此问题，我们可以通过

To fix this we can pass company's root certificate (e.g. company-root-ca.pem) to AWS CLI client via --ca-bundle command parameter (or via AWS_CA_BUNDLE environment variable or config file):

$ export HTTPS_PROXY=<host>:<port>
$ aws s3 ls --ca-bundle /path/to/company-root-ca.pem

这篇关于https://s3.zoneame.amazonaws.com/[SSL:CERTIFICATE_ VERIFY_FAILED]证书的SSL验证失败(_ssl.c:749)的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！

查看全文

https://s3.zoneame.amazonaws.com/[SSL:CERTIFICATE_ VERIFY_FAILED]证书的SSL验证失败(_ssl.c:749) [英] SSL validation failed for https://s3.zoneame.amazonaws.com/ [SSL: CERTIFICATE_ VERIFY_FAILED] certificate verify failed (_ssl.c:749)

问题描述

推荐答案

相关文章

Python最新文章

热门教程

热门工具

登录关闭

https://s3.zoneame.amazonaws.com/[SSL:CERTIFICATE_ VERIFY_FAILED]证书的SSL验证失败(_ssl.c:749) [英] SSL validation failed for https://s3.zoneame.amazonaws.com/ [SSL: CERTIFICATE_ VERIFY_FAILED] certificate verify failed (_ssl.c:749)

问题描述

推荐答案

相关文章

Python最新文章

热门教程

热门工具

登录 关闭

登录关闭