Certificates not syncing in High Availability

Started by EHRETic, July 01, 2025, 05:12:57 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
July 01, 2025, 05:12:57 PM
Hi there,

Today by updating my FWs to the latest version (25.1.10), I noticed that I had my web console certificates expired (on both nodes as one certificate is shared)
Nothing to worry about, I've a configured internal CA, I created a new GUI certificate on the master with the same parameters (SAN are valid for both nodes/IPs)

Issue is: when I wanted to sync the configuration, I was not able to find the new certificate on the backup node.

I've tried to reboot both nodes and also to activate/deactivate certificates sync (saving & hitting sync each time) - Didn't help.
I've also the exact same issue on a second pair of FWs (remote backup site - same version but VMs)

I can't figure out if it is a recent issue or not, so I'll need some help to troubleshoot and solve it.

Thanks in advance!😉

PS: I DID find the new sync button... 😇 but I would really appreciate a full sync status panel if possible.
(ref: https://github.com/opnsense/core/issues/8301)
Print
Go Up Pages1
User actions