I am trying to upload a SSL certificate using the instructions provided at Replace a Default Certificate Using HTTPS PUT
I need to do this from command line and so am attempting to use curl to upload the file and it is failing.
# curl --upload-file vmwareesxi.example.org.cer https://vmwareesxi.example.org/host/ssl_cert -u root --insecure -v
Enter host password for user 'root':
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS handshake, Finished (20):
> PUT /host/ssl_cert HTTP/1.1
> Host: vmwareesxi.example.org
> Authorization: Basic <removed>
> User-Agent: curl/7.66.0
> Accept: */*
> Content-Length: 1935
> Expect: 100-continue
>
< HTTP/1.1 403 Forbidden
< Date: Sun, 29 Sep 2019 22:00:39 GMT
< Set-Cookie: vmware_soap_session="3032fd1f05309111aaa45f7a0e7c0c38980649da"; Path=/; HttpOnly; Secure;
< Connection: close
< Content-Security-Policy: block-all-mixed-content
< Content-Type: text/plain; charset=utf-8
< Strict-Transport-Security: max-age=31536000
< X-Content-Type-Options: nosniff
< X-Frame-Options: DENY
< X-XSS-Protection: 1
< Content-Length: 0
<
* TLSv1.2 (OUT), TLS alert, close notify (256):
If I look at logs on the ESXi host I see that I successfully logged in. But cannot find anything else in any of the logs to suggest what I should do.
2019-09-29T22:05:30.758Z info hostd[2099262] [Originator@6876 sub=Default] Accepted password for user root from 192.168.xx.yy
2019-09-29T22:05:30.759Z info hostd[2099262] [Originator@6876 sub=Vimsvc.ha-eventmgr] Event 108 : User root@192.168.xx.yy logged in as curl/7.66.0
Can anyone help?
Thank you
DAK
PS... I changed my URL, IP address and hashed password above.