Knowledge Base

Preserving for the future: Shell scripts, AoC, and more

Plex Media Server: add root ca cert to trusted bundle

bgstack15

Comments

Solution

If you run Plex Media Server on a network that has a transparent web proxy, you might need to add your root ca certificate to the trusted store used by Plex.

Error message

In the log file, you could see a message like this.

Oct 06, 2020 15:53:44.564 [0x7f14897fa700] WARN - HTTP error requesting POST https://plex.tv/api/claim/exchange?token=xxxxxxxxxxxxxxxxxxxxioa5lM (60, SSL peer certificate or SSH remote key was not OK) (SSL certificate problem: self signed certificate in certificate chain)

Backstory

I checked the rpm contents, and thankfully found a standard pem-format root cert bundle!

[root@server1|/var/lib/plexmediaserver/Library/Application Support/Plex Media Server]# rpm -ql plexmediaserver | grep pem
/usr/lib/plexmediaserver/Resources/cacert.pem

Just add your root certificate (mine is from FreeIPA) to this bundle, and restart plex!

cat /etc/ipa/ca.crt >> /usr/lib/plexmediaserver/Resources/cacert.pem

Comments