English Forums > 24.1 Production Series

[MIGRATION] OpnSense backup to Gdrive

(1/1)

hunter86_bg:
Hi All,

After a migration from 23.7 to 24.1 my backup to GDrive stopped working.
I followed the official documentation and created a new cert and so on. It failed , but the fault is not in OpnSense but in the fact that openssl no longer supports legacy encryption.

In order to workaround the problem , I've copied the p12 to a legacy system (RHEL8) and extracted the contents of the p12 , so I could later recreate it on a newer system.

On RHEL8 or equivalent run the following:
openssl pkcs12 -in my-cert-from-gcp.p12  -nodes

Obtain the Public and Private keys from the output and save the output to a more modern system (most probably it would work on Opnsense shell but I tested it on RHEL9).
Run the following and provide "notasecret" for password:
openssl pkcs12 -export -out gdrive.p12 -inkey privkey.pem -in pubkey.pem

Then upload your p12 and test the backup.

danderson:
https://forum.opnsense.org/index.php?topic=38461.0

https://forum.opnsense.org/index.php?topic=38644.0

system: enable OpenSSL legacy provider by default to allow Google Drive backup to continue working with OpenSSL 3

hunter86_bg:
Well, I missed that but I think my way is more secure.

Navigation

[0] Message Index