0
Answered

cURL error 60

Qing L 9 months ago updated by Luoma H 3 months ago 10

Error: Connection error: Error: cURL error 60: SSL certificate problem: certificate has expired (see https://curl.haxx.se/libcurl/c/libcurl-errors.html)

What this mean?

Answer

Answer
Answered
  1. Download "cacert.pem" from here: https://curl.haxx.se/docs/caextract.html
  2. Save the cacert.pem file anywhere on your system.
  3. Open your php.ini file. If your php.ini file doesn't have the curl.cainfo line, just add it to the end of the file, then add the file path where you saved your cacert.pem file:
    Change:
    ; curl.cainfo = 
    
    To (adjust with your own path):
    curl.cainfo = "C:\PHP\Extras\SSL\cacert.pem"
    
  4. Restart your server.
Answer
Answered
  1. Download "cacert.pem" from here: https://curl.haxx.se/docs/caextract.html
  2. Save the cacert.pem file anywhere on your system.
  3. Open your php.ini file. If your php.ini file doesn't have the curl.cainfo line, just add it to the end of the file, then add the file path where you saved your cacert.pem file:
    Change:
    ; curl.cainfo = 
    
    To (adjust with your own path):
    curl.cainfo = "C:\PHP\Extras\SSL\cacert.pem"
    
  4. Restart your server.

Hi

I have faced that same situation while I was deploying test server for our lab. Downloaded the cert and added that row but still gives error. 

Have you restarted your web server?

Yep. And it seemed even be that you can define whatever to that row. I tested by lefting intentionally typo cert and it still same gave error like it won't even check cert path. 

Have you confirmed with a <?php phpinfo();?> page that you are editing the right file and that the changes are taking effect?

My temporary solution was to edit yum.conf with line sslverify=false

We highly recommend that you do not use this solution, because you open your system to vulnerabilities. You should really install and configure cURL with valid CA certificates.

So solution is to reinstall cURL? I am assuming that it is already installed. 

The solution is still to configure PHP with a file CA cert file, as mentioned in the post marked as answer. I see you have an Enterprise FileRun license, do contact us via e-mail and I can help you configure your server to fix this problem.

Well temp fix is for the test server and I am not about to keep it online all the time. Primary server with Enterprise license is running fine and no vulnerabilities.