I feel this question was answered but I could not find it somehow. I have tried an OOD 2.0.17 install with Dex , on CentOS 7 . Previously I did try it with our org’s wildcard certs, and it did not work. Now I have created a LetsEncrypt cert for the host, and reinstalled OOD. It still gives gives me error as such:
[Fri Oct 22 02:57:55.661650 2021] [auth_openidc:error] [pid 59984] [client 184.108.40.206:53184] oidc_provider_static_config: could not retrieve metadata from url: https://myserver.ca:5554/.well-known/openid-configuration
[Fri Oct 22 02:59:33.453125 2021] [auth_openidc:error] [pid 59985] [client 220.127.116.11:53230] oidc_util_http_call: curl_easy_perform() failed on: https://myserver.ca:5554/.well-known/openid-configuration (Peer’s Certificate issuer is not recognized.)
I have updated host certs as follows:
yum install ca-certificates
It did remove some other errors but the one quoted above remains. I can see the .wellknown/openidconfiguration URI in a browser when I connect manually to it, there is something. But it still doesnt work (500 internal server error shows instead of OOD).
University of Manitoba