In my CentOs 8.4.2105 curl is failing to access the site https://dadosabertos.bndes.gov.br.
I don't want to disable certificate validation. I want to configure my serve so all users would access this URL without any trouble.
Here is the error:
$ curl --version
curl 7.61.1 (x86_64-redhat-linux-gnu) libcurl/7.61.1 OpenSSL/1.1.1g zlib/1.2.11 nghttp2/1.33.0
Release-Date: 2018-09-05
Protocols: dict file ftp ftps gopher http https imap imaps pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IPv6 Largefile GSS-API Kerberos SPNEGO NTLM NTLM_WB SSL libz TLS-SRP HTTP2 UnixSockets HTTPS-proxy
$
$ curl https://dadosabertos.bndes.gov.br
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
I'm trying to follow these instructions and this question to configure the certificate authority, but I can't get it to work.
Using the browser, I've got this server certificate url http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt. I don't know why, but I couldn't download this file using curl, but it worked using the browser. So I downloaded it and uploaded to the server to the dir /etc/pki/ca-trust/source/anchors/.
Then I've ran update-ca-trust.
But the problem persists. I still get the same error. What can I be doing wrong?
