UI TLS certificate

Started by jjrushford, April 07, 2025, 08:34:27 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 07, 2025, 08:34:27 PM
Greetings,

I have a Letsencrypt wildcard certificate that is updated every 60 days.  I'm using this cert in all my SSL web applications including my open sense router.  I have to manually install it through the open sense UI whenever the cert is updated, every 60 days.  I would like to automate this, is there a tool available for this?  I'd like to copy in the new cert, private key and then restart the UI automatically.  I run the acme protocol elsewhere and am not looking to run it on my router.

thanks
John
April 07, 2025, 10:45:29 PM #1
might be discreetly oversized for that task, but cert management (incl. configuring the reference to the cert to use for the Web GUI) is implemented in the ansible role for opnsense
https://github.com/Rosa-Luxemburgstiftung-Berlin/ansible-opnsense

another method could be using the API (https://docs.opnsense.org/development/api/core/trust.html) for uploading new certs, but I am not sure if there is a way to configuring the reference to the cert to use for the Web GUI via the API
April 08, 2025, 12:13:46 AM #2
Thanks, I'll see what I can do with the API.
Print
Go Up Pages1
User actions