During installation the RESTfm report page may reference this page if cURL cannot verify the host's SSL certificate.

Development Systems

On development systems it is common to use self-signed SSL certificates. In this case the SSL checks may be disabled in RESTfm.ini.php

Production Systems

On production systems where the SSL certificate is valid (and verified by some other means such as a web browser) then it is probable that PHP's CA root certificates are out of date. There are two options to fix this problem.

Production Systems Option 1:

This option is only applicable where:

  • RESTfm is installed on the same system as both FMS and the web server (single machine deployment).
  • The SSL certificate has been verified by some other means (such as a web browser).

Then it is safe to disable the SSL checks in RESTfm.ini.php

Production Systems Option 2:

Manually update PHP's CA root certificates:

  1. Download the latest cacert.pem bundle from the cURL extracted CA certificates page
  2. Copy cacert.pem to the same folder that php.ini is located.
  3. Add the following lines to php.ini:

    curl.cainfo="c:\Program Files\FileMaker Server\Web Publishing\publishing-engine\php\cacert.pem"
    openssl.cafile="c:\Program Files\FileMaker Server\Web Publishing\publishing-engine\php\cacert.pem"
     
  4. Restart web service.