Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
WEBGUI: does the built-in self-signed SSL Cert NOT auto-renew itself?
« previous
next »
Print
Pages: [
1
]
Author
Topic: WEBGUI: does the built-in self-signed SSL Cert NOT auto-renew itself? (Read 1837 times)
andrew
Newbie
Posts: 9
Karma: 0
WEBGUI: does the built-in self-signed SSL Cert NOT auto-renew itself?
«
on:
September 30, 2021, 05:11:48 pm »
Newbie question:
Under System -> Trust -> Certificates I just stumbled upon this:
Name Issuer Distinguished Name
webConfigurator default self-signed ST=Zuid-Holland, O=OPNsense, L=Middelharnis, C=NL
CA: Yes, Server: No
Valid From: Tue, 03 Mar 2015 00:24:10 +0100
Valid Until: Wed, 02 Mar 2016 00:24:10 +0100
That's OPNsenses own SSL cert for the webgui. And it expired years ago after 1 year.
This is not critical in my case. But I wonder if it is normal that the default SSL cert for the webgui doesn't auto-renew, and if something is broken.
If this is normal, then what is the usual recommended way to deal with this?
Renew manually? Where?
I'm sure I can't be the only one.
Logged
franco
Administrator
Hero Member
Posts: 17660
Karma: 1611
Re: WEBGUI: does the built-in self-signed SSL Cert NOT auto-renew itself?
«
Reply #1 on:
September 30, 2021, 05:19:30 pm »
There's no mechanism for renewing that certificate since it's still invalid to browsers by default for self-signed reason alone.
Since 21.1 I think it's possible to run this command from the console:
# configctl webgui restart renew
Cheers,
Franco
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
WEBGUI: does the built-in self-signed SSL Cert NOT auto-renew itself?