unable to verify the first certificate

Question

Question

Touggourt · Jul 24

Hi Guys,

I'm running : IRIS for UNIX (Ubuntu Server LTS for x86-64 Containers) 2024.3 (Build 217U), and I have https web request call to connect and get data from external server ( https://myserver.com/api/gap/...etc) but I'm getting this error: "fetch failed unable to verify the first certificate".

I'm guessing that could be an issue with the certificate and our system admin mentioned that shouldn't be any issues with the certificate because I actually can remotely access IRIS management portal from my machine using https protocol, so I'm looking for a second opinion or maybe a direction to what our system admin should be looking at to fix it?

Thanks

Product version: IRIS 2024.3

Discussion (1)2

Log in or sign up to continue

score 1 · Answer 1 · 2025-07-28T03:54:29-04:00

1. Usually this indicates that the IRIS is sending an incomplete certificate chain
2. The fact that you can access IRIS SMP has nothing to do with the outgoing HTTPS request, which I assume you do with %Net.HttpRequest and using the SSL property that match the SSL config
3. I recommend accessing the https://myserver.com/api/gap/... from a browser and to check the certificate chain. Usually you will see 3 certificates (root CA, intermediate authority, the certificate itself) - you should put all those certificates (one after the other) in the PEM file that is configured in the SSL config in IRIS. Depending on the CA (which might be public, or company self-generated) you need to ask your sys admin