gitsslazure-devopsssl-certificatezscaler

How to import a zscaler certificate into Git


While trying to checkin/checkout code on azure DevOps from GIT i got the following error.

SSL certificate Error

Application has to send the traffic to Zscaler proxies. For this we have un-set the proxy in GIT post that application able to connect URL but SSL handshake was not happening. GIT is not aware of Zscaler certificate due to which it could not establish SSL handshake with destination server. I need to find a way to Import Zscaler certificate in GIT application so that it can connect the destination. Is it possible to just copy paste the certificate into GIT folder. What are the certificate under Git\usr\ssl\certs Can someone please assist.


Solution

  • Was able to bypass this issue with the command, however poses a security risk

    git config --global http.sslVerify false

    To trust a certificate, you can try these steps and check the result:

    1. Export the certificate through browser (e.g. chrome): Click lock icon in address bar > Certificate > Certification Path > Select top-most certificate in the chain > View Certificate > Copy to file (Choose Base-64 encoded X.509).
    2. Copy content to ca-bundle.crt file (check http.sslcainfo value by calling git config –l command) More information: Adding a corporate (or self-signed) certificate authority to git.exe’s store

    More information: Adding a corporate (or self-signed) certificate authority to git.exe’s store