# Troubleshoot TLS Handshake Fail Error

{% hint style="danger" %}
**At a Glance**: 🔒 TLS handshake failures in Pynt indicate that a secure connection to your API target couldn’t be established. This guide will help you resolve these issues for secure API scans.
{% endhint %}

***

## TLS Error Messages

* **TLS handshake failed because of an unauthorized certificate.**
* **TLS handshake failed because your target uses a self-signed certificate.**

### What Happened?

The SSL certificate used to identify the site is not trusted. This may be due to a self-signed certificate, an untrusted CA, or an SSL stripping mechanism.

### How to Resolve?

1. Use the `--insecure` flag when running Pynt’s Docker container:

```bash
docker run --insecure ...
```

{% hint style="warning" %}
⚠️ **Note**: Running in insecure mode means the server’s identity cannot be verified. Use this option with caution.
{% endhint %}

***

{% hint style="info" %}
For additional support, visit [Pynt Community Support](https://www.pynt.io/community).
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.pynt.io/documentation/api-security-testing/pynt-scans-troubleshooting/pynt-for-postman-troubleshooting/troubleshoot-tls-handshake-fail-error.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.