Conda update failed SSL error SSL CERTIFICATE VERIFY FAILED certificate verify failed

Question

I found out that there was a problem when I tried doing   conda update  lt package gt    Terminal output     conda update bokeh Fetching package metadata  SSL verification error     SSL  CERTIFICATE VERIFY FAILED  certificate verify failed     ssl c 590   SSL verification error   SSL  CERTIFICATE VERIFY FAILED    certificate verify failed   ssl c 590   SSL verification error   SSL    CERTIFICATE VERIFY FAILED  certificate verify failed   ssl c 590   SSL   verification error   SSL  CERTIFICATE VERIFY FAILED  certificate   verify failed   ssl c 590    Solving package specifications    Package   plan for installation in environment   anaconda       The following packages will be downloaded   package                                 build --------------------------- ----------------- decorator-4 0 2                        py27 0          11 KB ipython genutils-0 1 0                 py27 0          32 KB path py-8 1 1                          py27 0          45 KB pexpect-3 3                            py27 0          60 KB pickleshare-0 5                        py27 0           8 KB simplegeneric-0 8 1                    py27 0           6 KB traitlets-4 0 0                        py27 0          88 KB ipython-4 0 0                          py27 0         916 KB jinja2-2 8                             py27 0         263 KB tornado-4 2 1                          py27 0         515 KB bokeh-0 9 3                        np19py27 0        14 3 MB ------------------------------------------------------------                                        Total         16 2 MB       The following NEW packages will be INSTALLED   ipython genutils  0 1 0-py27 0     path py           8 1 1-py27 0     pexpect           3 3-py27 0       pickleshare       0 5-py27 0       simplegeneric     0 8 1-py27 0     traitlets         4 0 0-py27 0           The following packages will be UPDATED   bokeh             0 9 0-np19py27 0 -- gt  0 9 3-np19py27 0 decorator         3 4 2-py27 0     -- gt  4 0 2-py27 0     ipython           3 2 0-py27 0     -- gt  4 0 0-py27 0     jinja2            2 7 3-py27 1     -- gt  2 8-py27 0       tornado           4 2-py27 0       -- gt  4 2 1-py27 0           Proceed   y  n   y      Fetching packages     Could not connect to   https   repo continuum io pkgs free osx-64 decorator-4 0 2-py27 0 tar bz2   Error  Connection error   SSL  CERTIFICATE VERIFY FAILED  certificate   verify failed   ssl c 590     https   repo continuum io pkgs free osx-64 decorator-4 0 2-py27 0 tar bz2      dendisuhubdy finalproject dendisuhubdy  brew link --force openssl   Linking  usr local Cellar openssl 1 0 2d 1    1548 symlinks created   dendisuhubdy finalproject dendisuhubdy  conda update bokeh Fetching   package metadata  SSL verification error   SSL    CERTIFICATE VERIFY FAILED  certificate verify failed   ssl c 590   SSL   verification error   SSL  CERTIFICATE VERIFY FAILED  certificate   verify failed   ssl c 590   SSL verification error   SSL    CERTIFICATE VERIFY FAILED  certificate verify failed   ssl c 590   SSL   verification error   SSL  CERTIFICATE VERIFY FAILED  certificate   verify failed   ssl c 590    Solving package specifications    Package   plan for installation in environment   anaconda       The following packages will be downloaded   package                                 build --------------------------- ----------------- decorator-4 0 2                        py27 0          11 KB ipython genutils-0 1 0                 py27 0          32 KB path py-8 1 1                          py27 0          45 KB pexpect-3 3                            py27 0          60 KB pickleshare-0 5                        py27 0           8 KB simplegeneric-0 8 1                    py27 0           6 KB traitlets-4 0 0                        py27 0          88 KB ipython-4 0 0                          py27 0         916 KB jinja2-2 8                             py27 0         263 KB tornado-4 2 1                          py27 0         515 KB bokeh-0 9 3                        np19py27 0        14 3 MB ------------------------------------------------------------                                        Total         16 2 MB       The following NEW packages will be INSTALLED   ipython genutils  0 1 0-py27 0     path py           8 1 1-py27 0     pexpect           3 3-py27 0       pickleshare       0 5-py27 0       simplegeneric     0 8 1-py27 0     traitlets         4 0 0-py27 0           The following packages will be UPDATED   bokeh             0 9 0-np19py27 0 -- gt  0 9 3-np19py27 0 decorator         3 4 2-py27 0     -- gt  4 0 2-py27 0     ipython           3 2 0-py27 0     -- gt  4 0 0-py27 0     jinja2            2 7 3-py27 1     -- gt  2 8-py27 0       tornado           4 2-py27 0       -- gt  4 2 1-py27 0           Proceed   y  n   y      Fetching packages     Could not connect to   https   repo continuum io pkgs free osx-64 decorator-4 0 2-py27 0 tar bz2   Error  Connection error   SSL  CERTIFICATE VERIFY FAILED  certificate   verify failed   ssl c 590     https   repo continuum io pkgs free osx-64 decorator-4 0 2-py27 0 tar bz2   Please advise what I need to do to overcome this message

User · Answer

For everyone struggling with this issue  you simply need to upgrade your openssl installation  I m running windows 10  installed the latest anaconda 64-bit and am getting this error when I try to install upgrade anything with  conda  or  pip   If I uninstall the 64-bit anaconda and install the 32-bit  it works fine  I had a 64-bit version of openssl for windows installed  version 1 1 0 something  I uninstalled that and installed the latest I could find from here  https   slproweb com products Win32OpenSSL html -- there is a 64-bit version of 1 1 1 on there that worked  Now I can install packages via pip and conda successfully  Hope this helps

User · Answer

Conda needs to know where to find you SSL certificate store     conda config --set ssl verify  lt pathToYourFile gt  crt   No need to disable SSL verification   This command add a line to your  HOME  condarc file or  USERPROFILE   condarc file on Windows that looks like   ssl verify   lt pathToYourFile gt  crt   If you leave your organization s network  you can just comment out that line in  condarc with a   and uncomment when you return   If it still doesn t work  make sure that you are using the latest version of curl  checking both the conda-forge and anaconda channels

User · Answer

This seemed to do the trick for me   conda remove certifi conda install certifi   Then you can do whatever you were trying to do before  e g   conda update --all

User · Answer

That SSL error is misleading  I am using Anaconda 3  conda version 4 6 11  have the most current version of openssl on a Windows 10 instance  I got the issue resolved by changing the security settings on the Anaconda3 folder to Full Control   Don t think this helped  but I also have modified the    Anaconda3 Lib site-packages certifi cacert pem file to include the company s SSL cert   Hope this info helps you

User · Answer

according to  jreback here https   github com conda conda issues 1166  conda config --set ssl verify false    will turn off this feature  e g  here

User · Answer

After 2 hrs of net surfing Finally For me the problem was fixed by creating a folder pip  with a file  pip ini in C  Users lt username gt  AppData Roaming  e g  C  Users  lt username gt  AppData Roaming pip pip ini  Inside it I wrote   global  trusted-host   pypi python org pypi org files pythonhosted org  I restarted python  and then pip permanently trusted these sites  and used them to download packages from  If you can t find the AppData Folder on windows  write  appdata  in file explorer and it should appear  Source   pip install fails with  quot connection error   SSL  CERTIFICATE VERIFY FAILED  certificate verify failed   ssl c 598  quot

User · Answer

I faced the same problem on Mac OS X and with Miniconda  After trying many of the proposed solutions for hours I found that I needed to correctly set Condas environment     specifically requests environment variable     to use the Root certificate that my company provided rather than the generic ones that Conda provides    Here is how I solved it    Open Chrome  got to any website  click on the lock icon on the left of the URL  Click on   Certificate   on the dropdown  In the next window you see a stack of certificates  The uppermost  aka top line in window  is the root certificate  e g  Zscaler Root CA in my case  yours will very likely be a different one        Open Mac OS keychain  click on   Certificates   and choose among the many certificates the root certificate that you just identified  Export this to any folder of your choosing  Convert this certificate with openssl  openssl x509 -inform der -in  path to your certificate cer  -out  path to converted certificate pem For a quick check set your shell to acknowledge the certificate  export REQUESTS CA BUNDLE  path to converted certificate pem  To set this permanently open your shell profile   bshrs or e g   zshrc  and add this line  export REQUESTS CA BUNDLE  path to converted certificate pem  Now exit your terminal shell and reopen  Check again     You should be set and Conda should work fine

User · Answer

For those of us on corporate networks using web filters that implement trusted man in the middle SSL solutions  it is necessary to add the web-filter certificate to the certifi cacert pem   A guide to doing this is here   Main steps are    connect to https site with browser view and save root certificate convert cert to  pem copy and paste onto end of existing cacert pem save SSL happiness

[conda] Conda update failed: SSL error: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed

Examples related to conda