certificate

Hello everyone, am facing an issue with an phpipam and self signed certificates. When I add an external IPAM system to Proxmox IPAM section I have the possibility to add a fingerprint of the certificate, which works fine, but if I try to add a VNET with a subnet and dhcp pool I receive an error...

Hi everyone, I'm holding off on using the built-in ACME/Let's Encrypt integration in Proxmox VE for a specific reason, and I wanted to get your thoughts on it. The current implementation doesn't support wildcard certificates. This means I have to generate a specific certificate for each...

Super short version, is there a specific repo/set of repos for Ubuntu 24.04? Ran into some errors with the Debian instructions, mostly regarding the "Noble" codename for my OS and (possibly?) the lack of appropriate certificates for the bookworm, bookworm-updates, and bookworm-security repos...

In Proxmox 8.3.5 it seems if I add a custom secure certificate then join the server to a cluster, the custom certificate is lost/deleted and I need to add it again...? This happened to me a couple of times so I figured I'd post just to check if I'm crazy.

Hello folks, Hope you are doing great, We noticed that the host's certificate has a incorrect hostname under the certificate's SAN Subject Alternative Name: 127.0.0.1 0000:0000:0000:0000:0000:0000:0000:0001 localhost 192.168.254.21 NODE1 NODE1.LOCALxdevrv CLI also shows the same output...

I just tried to integrate a new (so I am a noob wrt ProxMox) ProxMox server into my existing private PKI. So I wanted by web sessions to use a cert I provided. To create the certificate: - I created a new 3072 bit key and exported it in PEM - I created a certificate signed by an intermediate...

https://download.proxmox.com/iso/ Reports a certificate misconfiguration (certificate was issued for: enterprise.proxmox.com).

For anyone using Hurricane Electric's dynamic DNS records in https://dns.he.net/, here is an ACME DNS API plugin script for PVE: https://github.com/markkuleinio/pve-acme-he-ddns If I have understood it correctly, Proxmox will update their own proxmox-acme repo from acme.sh repo in GitHub, so...

I am using my selfhosted smallstep server to issue certificates for everything in my homelab. By design, the certificates are short-lived (only 24 hours). I have managed to request the certificate just fine via proxmox, and the auto renewal process seems to work fine. However, when the proxmox...

I have done fresh install on a Debian 12 cloud host and all went well I thought, except that port 8006 is not responding. (I followed the documentation here) I the logs I find this: Jun 04 17:52:23 pmx1 pveproxy[12734]: /etc/pve/local/pve-ssl.pem: failed to use local certificate chain...

Since Acme released a bookmyname plugin at the end of 2023, it is now possible to use the user interface to manage certificates. A few comments though: I had trouble getting it to work, and couldn't find much information here. After a lot of struggling, I put some debugging code in...

Hi, I was trying to apply a SSL cert I created for my home lab and was following instructions from a YouTube video and after I imported it via the interface/gui the web page was inaccessible. I get the error "Site can't be reached - unexpectedly closed the connection." I use Brave browser but...

I have a pve-ssl.pem that expires on May 24th (the matching pve-root-ca.pem does not expire until May 2032), the default-on-creation /OU=PVE Cluster Node/O=Proxmox Virtual Environment/ certificate. It is not in the ACME section of the certificates area of my Proxmox node. Is this going to...

While installing my first Proxmox VE hosts I chose to use the latest version on a Dell Wyse 5070 host. The installation process went completely fine. As hostname I provided "proxmoxtest". After removing the install medium and first start I tried to connect via https and port 8006 but nothing...

Hi Team, I've recently upgraded all the PVE nodes + PBS nodes here and since that, my formerly fully trusted 3rd party certificate (used on PBS's) seems not trusted anymore. The PKI root certificate is imported on every PVE/PBS nodes and each nodes installed certificate is signed by that root...

Hi! I recently started using PMG, super amazing service! I plan on expanding to a HA Cluster and I wonder how to handle certificate for my cluster I want to have one dedicated subdomain for each and then one domain for users to have in their MX records. So lets say we have pmg.mydomain.net A...

Hey guys, I was able to setup PMG yesterday and my mailcow behind it. Right now I run into the following issue that I get a reject on a receiving server ehlo/helo domain. F.e. my PMG got the hostname mailgateway.internal.local right now. My 1st: Is it just enough to change the hostname in...

Hi, yesterday I’ve updated the certificate on PBS with a new self-signed cert (uploaded a proxy.pem containing the cert and the root ca that signed it, I don’t have an intermediate CA on my lab setup) and my PBS backups on PVE started to fail. Then I remembered that the fingerprint changed and...

I was able to successfully get a Lets Encrypt cert for my PVE box, using the domain: PVE.domain.com, but I am only able to access the server as such. If I connect to the server locally at https;//PVE:8006/, I get an err_cert_common_name_invalid error in chrome. Is there any way to add SANs to...

Hi, I've tried to upload a certificate+key pair signed by my own self-signed CA and as soon as I upload it I loose the connection to the management interface. I've tried to upload also a certificate with the server cert + CA cert and nothing changed. Is there any particular setting/option that I...