ACME Client or NGINX. New Certificates not stored in /usr/local/etc/nginx/key?

itngo · October 19, 2022, 08:39:56 AM

Hi,
we created a new ACME-LetsEncrypt Cert and have Lets-Encrypt integration enabled in NGINX.
We can request cert and it gets validated and stored in SYSTEM/TRUST/Certificates but the file never finds its way to /usr/local/etc/nginx/key. We can select the cert in NGINX/Configuration/Server but then get an error in NGINX Global emerg that file can not be loaded.

If we convert and manually copy the cert key and pem to the location it starts working.

Where to debug?

OPNsense 22.7.6-amd64
FreeBSD 13.1-RELEASE-p2
OpenSSL 1.1.1q 5 Jul 2022

Fright · October 19, 2022, 08:52:37 AM

hi
https://forum.opnsense.org/index.php?topic=30656.msg148080#msg148080

itngo · October 19, 2022, 09:01:25 AM

Ok, will be fixed in 22.7.7... Thx!

ACME Client or NGINX. New Certificates not stored in /usr/local/etc/nginx/key?

itngo

October 19, 2022, 08:39:56 AM

Fright

October 19, 2022, 08:52:37 AM #1

itngo

October 19, 2022, 09:01:25 AM #2