Nagios Client - NRPE SSL handshake doesn


hello all,

I am just trying to install Nrpe in my remote host linux but got stucked. The document I followed is this :

But when i issue the test command like
abc# /usr/local/nagios/libexec/check_nrpe -H localhost
this returns me error like this :
CHECK_NRPE: Error - Could not complete SSL handshake.

I have verified in /etc/services and /etc/xinetd.d/nrpe files for the necessary checks. still no luck. How do i remove nrpe and nagios plugin in clinet completely and re-do it again ? can someone guide on this ?




this thread may (or not) help you: … .php?11851

note: someone is saying that you can’t test nrpe with the -H localhost (although I just tried and it seems to work)


Hello Loose,

I tried to test from the nagios server but it still complains like this :

abc# /usr/local/nagios/libexec/check_nrpe -H
CHECK_NRPE: Error - Could not complete SSL handshake.

For testing purpose I turned off both client and server


to check without ssl:
add the option “-n” in both command lines (client and server):

also, try to do a “ldd check_nrpe” and “ldd nrpe” on your servers; it will tell you which librairies both are using, and you might see some surprises (like missing libs :))


okay when i complied the nrpe i get one error like this
checking for Kerberos include files… could not find include files

and by issuing command ldd check_nrpe output shows : => (0x00674000) => /lib/ (0x078b8000) => /lib/ (0x00116000) => /lib/ (0x00ddf000) => /lib/ (0x00349000) => /usr/lib/ (0x002bb000) => /usr/lib/ (0x07823000) => /lib/ (0x0026f000) => /usr/lib/ (0x002eb000) => /lib/ (0x00101000) => /lib/ (0x004b7000) => /usr/lib/ (0x004d6000)
/lib/ (0x0032b000) => /usr/lib/ (0x002b0000) => /lib/ (0x00313000) => /lib/ (0x00d7d000) => /lib/ (0x00d97000)

and issuing in server ldd nrpe i get this
ldd: ./nrpe: No such file or directory

am i issuing in server too ldd check_nrpe ??

using -n reports like this in clients and servers

test# /usr/local/nagios/libexec/check_nrpe -n -H
CHECK_NRPE: Error receiving data from daemon.

no luck yet



Try to look in the remote host log files for any errors with nrpe and also in the monitor host.

I faced tons of problems with nrpe so i’m kinda expert now :smiley:

Did you check whether ssl version is the same ?


how do i check which version of ssl i am using ?


also, you can try to compile with the option “–disable-ssl” … it’s a bit harsh, but at least, you won’t have to bother with this :slight_smile:


I re-complied the NRPE in both client and in server with --disable-ssl option and it does work. My worries is, is this really secure or recommended ?