Getting Could not establish trust relationship for the SSL/TLS secure channel after upgrading Teamcity to SSL

Recently we have upgraded our Teamcity server to SSL. After the upgrade octopus is not downloading packages from the new Feed. I am getting following error:

'https:// build:443/httpAuth/app/nuget/v1/FeedService.svc/'
February 24th 2017 15:32:48
Error
Unable to download package: One or more errors occurred. Unable to load the service index for source https:// build:443/httpAuth/app/nuget/v1/FeedService.svc/. NuGet.Protocol.Core.Types.FatalProtocolException: Unable to load the service index for source https:// build:443/httpAuth/app/nuget/v1/FeedService.svc/. —> System.Net.Http.HttpRequestException: An error occurred while sending the request. —> System.Net.WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. —> System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.

Can you please guide, what changes I Need to do on Octopus server to make the feeds back working. Currently, Octopus and teamcity both are installed on same machine.

Any help would be grateful

Hi,

We had an issue previously where the Nuget libraries we use where caching connection, could you try restarting the Octopus Server service to see if that resolves the issue?

If that doesn’t work can you please tell me which version of Octopus and which version of TeamCity you are using?

Regards,
Mark

Hi,

Looking into this a bit further. You will get this error if you are using a self-signed certificate for SSL on the TeamCity server but the Octopus server doesn’t trust that certificate. You will need to import it into the Windows certificate store on the Octopus machine.

Can you browse to TeamCity from the Octopus server without getting any SSL warnings?

Mark

HI,
Issue is resolved by adding DNS entry for teamcity server using same url as wild card certificate.

Thanks for your support.