| Subject: | LWP Certificate Validation Features prevent connection. |
I was updating a script we have which uses BigIP::Control. With the latest version of the module on perl 5.18 connection fails with:
500 Can't connect to myf5.myorg.org:443 (certificate verify failed) at /usr/local/share/perl/5.18.2/BigIP/iControl.pm line 600.
The administrator who set up our new F5 followed the official recommendation of using a self-signed certificate.
the following works before calling BigIP::iControl->new
$ENV{'PERL_LWP_SSL_VERIFY_HOSTNAME'} = 0;
IO::Socket::SSL::set_ctx_defaults(
SSL_verifycn_scheme => 'www',
SSL_verify_mode => 0,
);
While I was able to find an LWP option to specify the location of a CA certificate store, there doesn't seem to be one to trust a self-signed certficate.
It would be helpful if you documented this or added an optional parameter to disable certificate checking.