❔ Invalid remote certificate, error in certificate chain: Partial chain
When I am sending this GET request from my machine in VS, everything works perferctly normal.
When I deploy this soulution to some remote server, I am getting the error from title.
Any idea what would it mean? I would assume its something wrong with the certificate of the server where the API is located, but then it shouldnt work from my machine either, right?
11 Replies
So there are three computers involved here, correct?
API Server
remote computer
local computer
"remote certificate" validation usually involves checking trust for the entire certificate chain - so if local trusts the API servers CA, but remote doesn't, that will cause such errors
Something like that yes. So the cert should also be "valid" on the machine from which the GET is requested, and not only on the API server?
yeah exactly. its actually the client doing the validation
its checking "do i trust this servers certs?"
Yeah i am not fully understanding the whole "certificate trusting" process...
Can I somehow check or specify which local cert is being used by the solution?
So i can duplicate this on my machine also and selcet the "invalid cert"
Uhm, no... but you can check the remote cert
and then look in your local computers cert store
easiest way is to just visit the api in a web-browser
click that, then the little cert icon top right.
and you see this
now, most webbrowsers come with a whole list of CAs they trust by default
Ahh, so if I can open the specific GET in browser, doesnt mean I could also successfully retrieve it from the worker service or something like that?
In certificate store on the machine, where should I look if cert is trusted? Under "Trusted Root certificates" section=
And should I look for "Baltimore ..." or "Cloudflare ..."?
Because I can find the first one, but not the other one
Baltimore is the root CA here
Looks like nothing has happened here. I will mark this as stale and this post will be archived until there is new activity.