Plex SSL certs a being tagged as self signed #1206

New issue

Closed

opened 2026-02-28 02:13:28 -05:00 by deekerman · 6 comments

deekerman commented 2026-02-28 02:13:28 -05:00

Owner

Copy link

Originally created by @mjefferys on GitHub (Jun 23, 2022).

⚠️ Please verify that this bug has NOT been raised before.

• I checked and didn't find similar issue

🛡️ Security Policy

• I agree to have read this project Security Policy

Description

Since upgrading to 1.17 my plex monitor is reporting as down with the error saying the cert is self-signed.

Prior to 1.17 this was fine.

Plex provides SSL certs automagically to its instances on the plex.direct subdomain. As far as I can tell these are perfectly valid and not self-signed. Navigating to the address in a browser instance reports that the certificate is valid.

Yet uptime kuma reports it as invalid.

Ticking 'Ignore TLS/SSL error for HTTPS websites' also does nothing.

Happy to share a test URL privately to repro this.

👟 Reproduction steps

Add a plex instance as a monitor via its plex.direct url Ie:

https://127.0.0.1.509a3db652b64f15a0fe26fce4fa770f.plex.direct:32400/

👀 Expected behavior

Instance is monitored and up

😓 Actual Behavior

Instance is monitored and reports as down due to the certificate being 'self-signed'

🐻 Uptime-Kuma Version

1.71.1

💻 Operating System and Arch

docker container

🌐 Browser

Chrome

🐋 Docker Version

No response

🟩 NodeJS Version

No response

📝 Relevant log output

No response

Originally created by @mjefferys on GitHub (Jun 23, 2022). ### ⚠️ Please verify that this bug has NOT been raised before. - [X] I checked and didn't find similar issue ### 🛡️ Security Policy - [X] I agree to have read this project [Security Policy](https://github.com/louislam/uptime-kuma/security/policy) ### Description Since upgrading to 1.17 my plex monitor is reporting as down with the error saying the cert is self-signed. Prior to 1.17 this was fine. Plex provides SSL certs automagically to its instances on the plex.direct subdomain. As far as I can tell these are perfectly valid and not self-signed. Navigating to the address in a browser instance reports that the certificate is valid.  Yet uptime kuma reports it as invalid.  Ticking 'Ignore TLS/SSL error for HTTPS websites' also does nothing. Happy to share a test URL privately to repro this. ### 👟 Reproduction steps Add a plex instance as a monitor via its plex.direct url Ie: https://127.0.0.1.509a3db652b64f15a0fe26fce4fa770f.plex.direct:32400/ ### 👀 Expected behavior Instance is monitored and up ### 😓 Actual Behavior Instance is monitored and reports as down due to the certificate being 'self-signed' ### 🐻 Uptime-Kuma Version 1.71.1 ### 💻 Operating System and Arch docker container ### 🌐 Browser Chrome ### 🐋 Docker Version _No response_ ### 🟩 NodeJS Version _No response_ ### 📝 Relevant log output _No response_

deekerman 2026-02-28 02:13:28 -05:00

• closed this issue
• added the
  bug
  label

deekerman commented 2026-02-28 02:13:34 -05:00

Author

Owner

Copy link

@louislam commented on GitHub (Jun 23, 2022):

https://127.0.0.1.509a3db652b64f15a0fe26fce4fa770f.plex.direct:32400/

Unable to resolve the domain, is it correct?

@louislam commented on GitHub (Jun 23, 2022): > https://127.0.0.1.509a3db652b64f15a0fe26fce4fa770f.plex.direct:32400/ Unable to resolve the domain, is it correct?

deekerman commented 2026-02-28 02:13:34 -05:00

Author

Owner

Copy link

@mjefferys commented on GitHub (Jun 23, 2022):

Apologies I just gave that as an example host name of the type plex generates certs for. An actual live one looks like this.

https://51-[REDACTED].8a44[REDACTED]d88c3f.plex.direct:32400/

Edit by @louislam: Redacted for safe

@mjefferys commented on GitHub (Jun 23, 2022): Apologies I just gave that as an example host name of the type plex generates certs for. An actual live one looks like this. https://51-[REDACTED].8a44[REDACTED]d88c3f.plex.direct:32400/ Edit by @louislam: Redacted for safe

deekerman commented 2026-02-28 02:13:34 -05:00

Author

Owner

Copy link

@louislam commented on GitHub (Jun 23, 2022):

It is working in my side.

You can test this in the demo site:
https://demo.uptime.kuma.pet/

@louislam commented on GitHub (Jun 23, 2022): It is working in my side. You can test this in the demo site: https://demo.uptime.kuma.pet/ 

deekerman commented 2026-02-28 02:13:34 -05:00

Author

Owner

Copy link

@mjefferys commented on GitHub (Jun 23, 2022):

Hmm, yes, confirmed also how weird.

My instance is just the default uptime-kuma docker container (louislam/uptime-kuma:latest) hosted on a debian vm I assume that demo site is also just that?

michael@mj-mon-01 ~> uname -as
Linux mj-mon-01 5.10.0-9-cloud-amd64 #1 SMP Debian 5.10.70-1 (2021-09-30) x86_64 GNU/Linux
michael@mj-mon-01 ~> cat /etc/debian_version
11.3

@mjefferys commented on GitHub (Jun 23, 2022): Hmm, yes, confirmed also how weird. My instance is just the default uptime-kuma docker container (louislam/uptime-kuma:latest) hosted on a debian vm I assume that demo site is also just that? michael@mj-mon-01 ~> uname -as Linux mj-mon-01 5.10.0-9-cloud-amd64 #1 SMP Debian 5.10.70-1 (2021-09-30) x86_64 GNU/Linux michael@mj-mon-01 ~> cat /etc/debian_version 11.3

deekerman commented 2026-02-28 02:13:35 -05:00

Author

Owner

Copy link

@louislam commented on GitHub (Jun 23, 2022):

My demo site server is CentOS, but I think it is not related.

• Try to spin up an temp Uptime Kuma container uptime-kuma:1.16.1, see if it is really a 1.17.1 issue.
• Try to go inside your uptime kuma container and use curl to the website.

docker exec -it uptime-kuma bash

@louislam commented on GitHub (Jun 23, 2022): My demo site server is CentOS, but I think it is not related. - Try to spin up an temp Uptime Kuma container `uptime-kuma:1.16.1`, see if it is really a 1.17.1 issue. - Try to go inside your uptime kuma container and use curl to the website. ``` docker exec -it uptime-kuma bash ```

deekerman commented 2026-02-28 02:13:35 -05:00

Author

Owner

Copy link

@mjefferys commented on GitHub (Jun 23, 2022):

Super weird, spun up a 1.16.1 and it was fine. Upgraded that instance to 1.17.1 and it was still fine. Deleted and recreated my main instance and it's back to being fine. No idea what happened! Apologies for cluttering things up can close as non-reproducible!

@mjefferys commented on GitHub (Jun 23, 2022): Super weird, spun up a 1.16.1 and it was fine. Upgraded that instance to 1.17.1 and it was still fine. Deleted and recreated my main instance and it's back to being fine. No idea what happened! Apologies for cluttering things up can close as non-reproducible!

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

npm-update

3.0.X

dev-better-auth

copilot/remove-password-complexity-requirements

2.2.X

copilot/sub-pr-6355

1.23.X

api-via-socketio-client

2.1.3

2.1.2

2.1.1

2.1.0

2.1.0-beta.3

2.1.0-beta.2

2.1.0-beta.1

2.1.0-beta.0

2.0.2

2.0.1

1.23.17

2.0.0

2.0.0-beta.4

2.0.0-beta.3

2.0.0-beta.2

2.0.0-beta.2-temp

2.0.0-beta.1

1.23.16

2.0.0-beta.0

1.23.15

1.23.14

1.23.13

1.23.12

1.23.11

1.23.10

1.23.9

1.23.8

1.23.7

1.23.6

1.23.5

1.23.5-beta.0

1.23.4

1.23.3

1.23.2

1.23.1

1.23.0

1.23.0-beta.1

1.23.0-beta.0

1.22.1

1.22.0

1.22.0-beta.0

1.21.3

1.21.2

1.21.2-beta.0

1.21.1

1.21.0

1.21.0-beta.1

1.21.0-beta.0

1.20.2

1.20.1

1.20.0

1.20.0-beta.0

1.19.6

1.19.5

1.19.4

1.19.3

1.19.2

1.19.1

1.19.0

1.19.0-beta.2

1.19.0-beta.1

1.19.0-beta.0

1.18.5

1.18.4

1.18.3

1.18.2

1.18.1

1.18.0

1.18.0-beta.0

1.17.1

1.17.0

1.17.0-beta.1

1.17.0-beta.0

1.16.1

1.16.0

1.16.0-beta.0

1.15.1

1.15.0

1.15.0-beta.1

1.14.1

1.15.0-beta.0

1.14.0

1.14.0-beta.2

1.13.2

1.14.0-beta.1

1.14.0-beta.0

1.13.1

1.13.0

1.13.0-beta.2

1.13.0-beta.1

1.13.0-beta.0

1.12.1

1.12.0

1.11.4

1.11.3

1.11.2

1.11.1

1.11.0

1.10.2

1.10.1

1.10.0

1.9.2

1.9.1

1.9.0

1.8.0

1.7.3

1.7.2

1.7.1

1.7.0

1.6.3

1.6.2

1.6.1

1.6.0

1.5.3

1.5.2

1.5.1

1.5.0

1.3.2

1.3.1

1.3.0

1.2.0

1.1.0

1.0.10

1.0.9

1.0.8

1.0.7

1.0.6

1.0.5

1.0.4

1.0.3

1.0.2

1.0.1

1.0.0

Labels

Clear labels   

A:accessibility

  

A:api

  

A:cert-expiry

  

A:core

  

A:dashboard

  

A:deployment

  

A:documentation

  

A:domain expiry

  

A:incidents

  

A:maintenance

  

A:metrics

  

A:monitor

  

A:notifications

  

A:reports

  

A:settings

  

A:status-page

  

A:ui/ux

  

A:user-management

  

Stale

  

ai-slop

  

blocked

  

blocked-upstream

  

bug

  

cannot-reproduce

  

dependencies

  

discussion

  

duplicate

  

feature-request

  

feature-request

  

good first issue

  

hacktoberfest

  

help

  

help wanted

  

house keeping

  

invalid

  

invalid-format

  

invalid-format

  

question

  

releaseblocker 🚨

  

security

  

spam

  

type:enhance-existing

  

type:new

  

wontfix

No labels

A:accessibility

A:api

A:cert-expiry

A:core

A:dashboard

A:deployment

A:documentation

A:domain expiry

A:incidents

A:maintenance

A:metrics

A:monitor

A:notifications

A:reports

A:settings

A:status-page

A:ui/ux

A:user-management

Stale

ai-slop

blocked

blocked-upstream

bug

cannot-reproduce

dependencies

discussion

duplicate

feature-request

feature-request

good first issue

hacktoberfest

help

help wanted

house keeping

invalid

invalid-format

invalid-format

question

releaseblocker 🚨

security

spam

type:enhance-existing

type:new

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/uptime-kuma#1206

No description provided.