Error add new scanner (Nessus, Acunetix)

Question

Error add new scanner (Nessus, Acunetix)

sonpd2 opened this issue 4 years ago · 4 comments

When I add a new scanner, the response has error: {"status":"I/O error on GET request for "https://private_ip:8834/editor/scan/templates": sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target; nested exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target","requestId":null}
Please show me how to fix it

Answer 1 · 2021-01-17T06:40:55.000Z

I found the way

Answer 2 · 2021-01-19T07:56:38.000Z

how to fix this?

Answer 3 · 2021-01-19T08:33:01.000Z

I see. Just use HTTP, do not use HTTPS

Answer 4 · 2021-01-19T08:36:40.000Z

@nibiwodong moreinfo required what to fix.
I assume You are trying to integrate with Nesus (please note that working integration in scope of scan creation and configuration, scan running and vulnerability loading works only with Nessus v6 and bellow, > v7 drop support for rest API)

If You have TLS on any scanner You want to use with Mixeway there is a requirement for Mixeway to trust it. If You are using corporate CA or self-signed certificate on nessus or any scanner You have to import it into MixewayHub's trust store by doing:

Mixeway TrustStore is in /pki/trust.jks (password in environment file)

to add scanner certificate to this store use:
keytool -import -alias scanner-file <scanner.crt>-storetype JKS -keystore pki/trust.jks