Hello.
I'm on brand new install of Fedora 25 server.
I'm behind corporate proxy that requires authentication (username/password).
I can't figure out why DNF won't connect to the sites whereas curl (seemed ) to have no problem.
The error I'm getting is
Code:
dnf -v check-update
<skip>
cannont download "https://mirrors.<blah>': Cannot prepare internal mirrorlist: Curl error (60): Peer certificate cannot be authenticated with known CA certificates for https://mirrors.fedoraproject<blah-blah> [Peer's Certificate issuer is not recognized.]
Error: Failed to synchronize cache for repo 'updates'
at the same time if I run :
Code:
curl -v --X http://<proxyuser>:<proxy_pass>@proxy_ip:port http://site.com > page.html
I'm getting through and able to download the html page.
what I have done so far:
1. I appended /etc/dnf/dnf.conf with:
Code:
proxy=http://<ip>:port
proxy_username=<proxy_user>
proxy_password=<proxy_password>
2. Obtained the CA certificate for the proxy and added it into /etc/pki/ca-trust/source; followed with "update-ca-trust extract"
3. compared the date/time with the network - close to a minute despite not running ntpd
still dnf is unable to get the list.
any leads will be very much appreciated.
Update:
hmmm.. the curl isn't getting the page ( from a website) if I specify httpS protocol. but works fine if I specify http protocol. DNF makes requests on httpS too.
DNF curl: (60) Peer certificate cannot be authenticated with known CA certificates
