Misp: Issue with MISP Certificate

Created on 1 Apr 2019  路  7Comments  路  Source: MISP/MISP

Hi Guys,

I recently installed MISP instance in my lab for testing the threat Intel feeds functionality. I'm planning to use the threat feeds in Hive instance which is a incident response solution, also installed on one of my lab VM's.

I have successfully integrated MISP and Hive but the MISP feeds are not getting imported to Hive solution because of the lack of certificate on the MISP instance. I'm running a lab environment and do not have a certificate authority to get the certificate part done. I have tried to use letsencrypt as mentioned on the link https://github.com/MISP/MISP/issues/951 with no success since letsencrypt is used for providing certificates for public domains.

I don't have the budget to purchase private domain certificates from verisign or some other CA's.

Can some pls assist me on how do i proceed with the installing a valid certificate on my MISP instance.

Below are few details which might be helpful.

Work environment

| Questions | Answers
|---------------------------|--------------------
| Type of issue | Support
| OS version (server) | Ubuntu 16
| OS version (client) | Seven
| MISP version / git hash | 2.4.100

support

Most helpful comment

Hi, there is an alternative method, where you go to the application.conf in thehive and put this at the top
play.ws.ssl.loose.acceptAnyCertificate = true then at least you will have https running

All 7 comments

Not sure if the hive allows you to skip the SSL checks, but if not:

https://letsencrypt.org/ <- grab a certificate there for free

Hi iglocska,

I already tried using letscrypt and it gave me the below error. It seems letscrypt can be used to obtain certificates for public domain only and they require a registered public domain. Our is an internal instance used for test purposes.

image

letscrypt

Please suggest.

Regards

Hi,

The issue has been resolved and can be closed. The workaround was to remove https redirect and self signed certificate from MISP. Once on http everything syncs up.

Regards

Hi, there is an alternative method, where you go to the application.conf in thehive and put this at the top
play.ws.ssl.loose.acceptAnyCertificate = true then at least you will have https running

Thanks for everyone involved.

Hi, there is an alternative method, where you go to the application.conf in thehive and put this at the top
play.ws.ssl.loose.acceptAnyCertificate = true then at least you will have https running

thanks a lot you save my time

Was this page helpful?
0 / 5 - 0 ratings

Related issues

leagueherald picture leagueherald  路  3Comments

qais744 picture qais744  路  7Comments

zero3228 picture zero3228  路  5Comments

eCrimeLabs picture eCrimeLabs  路  4Comments

jezkerwin picture jezkerwin  路  7Comments