English Forums > Zenarmor (Sensei)

TLS blocking page

(1/1)

almodovaris:
I have enabled TLS blocking page (beta). How do I trust its certificate upon client PCs?

The certificate from /usr/local/opnsense/www/devServer/ says it's for localhost.

Also tried the certificates from /usr/local/sensei/cert/

I have found something about it at https://stackoverflow.com/questions/59738140/why-is-firefox-not-trusting-my-self-signed-certificate

Phiolin:
You should be able to download the root certificate with practically every modern browser.

That said, it’d be cool if we could configure Zenarmor to use an existing OPNsense CA to generate the certificates instead of using its own internal CA.

almodovaris:
Error code: MOZILLA_PKIX_ERROR_CA_CERT_USED_AS_END_ENTITY

sy:
Hi,

It will be changed to use OPNsense's CA for the next release, most probably 1.13.

Navigation

[0] Message Index