diff --git a/cmd/auditc/auditc.go b/cmd/auditc/auditc.go
index 676bd519cac567a6ddf3abe6700fd93d892be0f8..b2ed0d195dc22a2b73c42bf21d02eb85ca272800 100644
--- a/cmd/auditc/auditc.go
+++ b/cmd/auditc/auditc.go
@@ -73,7 +73,7 @@ func main() {
 	}
 
 	tlsConf := audit.TLSClientAuthConfigWithCerts(*sslCa, *sslCert, *sslKey)
-	results := runQuery(*serverUrl+"/api/1/query", tlsConf, query)
+	results := runQuery(strings.TrimRight(*serverUrl, "/")+"/api/1/query", tlsConf, query)
 	for _, msg := range results {
 		json.NewEncoder(os.Stdout).Encode(msg)
 		os.Stdout.Write([]byte{'\n'})
diff --git a/cmd/localauditd/localauditd.go b/cmd/localauditd/localauditd.go
index b0a9a5c7f460d653aa261cc89b4339090a016eab..db4805f1f0bfc2acc6ebbaf86ed028d2ac53a3b6 100644
--- a/cmd/localauditd/localauditd.go
+++ b/cmd/localauditd/localauditd.go
@@ -57,10 +57,13 @@ func newLocalServer(spoolPath string, serverUrl string, tlsConf *tls.Config) *lo
 		Transport: timeoutTransport,
 	}
 
+	// We're only talking to a single API endpoint.
+	url := strings.TrimRight(serverUrl, "/") + "/api/1/write"
+
 	l := &localServer{
 		spool: spool,
 		http:  httpClient,
-		url:   serverUrl,
+		url:   url,
 	}
 	go l.backgroundFlusher()
 	return l
@@ -245,6 +248,6 @@ func main() {
 	}
 
 	tlsConf := audit.TLSClientAuthConfigWithCerts(*sslCa, *sslCert, *sslKey)
-	locald := newLocalServer(*spoolDir, *serverUrl+"/api/1/write", tlsConf)
+	locald := newLocalServer(*spoolDir, *serverUrl, tlsConf)
 	log.Fatal(locald.Serve(*socketPath))
 }