ssl

Hey All, I love the new ACME certificate feature available in PVE 6/7. I created an internal ACME server, and tested it using one of our PVE7 servers. After some infrastructure changes occurred, the ACME server was moved to a new hostname, for example, `acme.example-a.com` ->...

This may end up being quite a loaded question but… What would be the best/easiest way to setup SSL/secure communication for the WHOLE server including all VMs and Containers? Is it possible to have local/LAN access ONLY, with remote access only available via a VPN/tunnel? Would it be possible...

Hi there, I have changed the hostname of my node and am experiencing an issue with the SSL certificate after the change, I am getting the error: Jun 26 13:51:39 prmx0 pveproxy[1767]: /etc/pve/local/pve-ssl.key: failed to load local private key (key_file or key) at...

Hello, I have 2 VM's currently running on my node. After researching how to change the hostname, it states only doing so on an empty node. Is it possible to get around this or would I have to configure a new server first, set the hostname, add SSL and migrate VM's? Any information or...

We’re trying to configure our Cisco ASA 5505 to allow users to access the Web GUI of our PVE Server via a clientless SSL VPN. Currently the ASA gets an error which is ‘failed to establish SSL handshake’. I think this is because the ASA doesn’t redirect traffic back to the requestor My...

Hi, I implemented the check_pve script from https://github.com/nbuchwitz/check_pve to have Proxmox monitored from my Icinga2 instance. Some checks run good, some others receives HTTP error code 596: root@node01:~/check_pve-1.1.3# ./check_pve.py -e node1 -u icinga2@pve -p password -k -m...

Hello everyone, 1- Everything works fine when I update the repository list and upgrade all packages, but when I try to view the changelog, 50% of the time for the debian packages and 100% of the time for Proxmox enterprises packages, I get the error you can see in both screenshot. Looking at the...

Hello, i noticed that the command "proxmox-backup-manager cert info | grep Fingerprint" and "openssl x509 -noout -in /etc/proxmox-backup/proxy.pem -fingerprint -sha256" gives me the same fingerprint. If i now update this certificate and key with one from Let's Encrypt i get certificate...

Hello, changing one node ip address, now i have this error on the chanded node: Error Connection error 596: tls_process_server_certificate: certificate verify failed I have tried pvecm updatecerts --force on this node, no errors but the certificate still fail.. Is it possible to solve in some...

Hey there :) I have a running FreePBX VM on proxmox and I need to install a valid SSL certificate (not a self signed). FreePBX allows to add it automatically but It can't resolve it. I'm a noob and just can't figure out how to add a valid let's encrypt certificate with this. FreePBX...

Hey Guys, I am very new to proxmox, So please excuse the ignorance. I have been looking around but found no answer, Hopefully there's one here ;). I have setup a proxmox clustere with an additional node, But if I try to do anything through the cluster, it says communication error because...

Hi All! I had a test cluster PVE 5.4 with authentication thru Active Directory (Win 2008 R2) with SSL enabled, worked well. After upgrade to PVE 6.0 any user got message "Login failed. Please try again" while trying to log on. In log I see: Aug 17 07:59:17 pve-test-00114983...

hi, i'm using Proxmox VE 5. i try upload ssl from geotrust. after upload private key and intermediate key, i can't access proxmox GUI. please help.

Hello there, I have problem to port forwarding port 443/https through from VM to Host, i do forwarding setup in /etc/network/interface, there no problems in port 80, i can access the public host ip, but when i try to connect through port 443 is unable to connect, i check the connection by ...

Hi, Sometimes I received Certificates Error on my Proxmox Cluster: kvm: -vnc unix:/var/run/qemu-server/105107105.vnc,x509,password: Failed to start VNC server: Our own certificate /etc/pve/local/pve-ssl.pem failed validation against /etc/pve/pve-root-ca.pem: The certificate hasn't got a known...

Hallo zusammen, ich habe Testweise ein Cluster von mit 2 Systemen installiert. Ich hatte direkt nach der Installation beide Systeme zu einem Cluster verbunden. Lief scheinbar soweit ganz gut. Was mich etwas irritierte, die Logs, Tracking Center und Statistics zeigen immer nur Aktionen des...

Hi! I have started to use Proxmox recently (version 5.2.11). Installation is done and now I started the configuration phase. First thing, the SSL certificate. I decided to use Let's encrypt script for the node. I went so to the certificates menu, register an account, add my node domain and...

Hi, I'm creating SSL certificate with Let's Encrypt on another server (HAProxy). The certificates follow the following naming convention: <subdomain>.<domain>.cert and <subdomain>.<domain>.key In my case: pve.biszumbitterenen.de.cert pve.biszumbitterenen.de.key In the "cert deployment step" I...

Hi, Is this behaviour normal? kvm: -vnc unix:/var/run/qemu-server/807170.vnc,x509,password: Failed to start VNC server: The server certificate /etc/pve/local/pve-ssl.pem has expired TASK ERROR: start failed: command '/usr/bin/kvm -id 807170 -name Copy-of-NETops -chardev...

Hello, I have three Proxmox containers, one of them is nginx to act as redirection to other two containers. http redirection to both containers works fine. I'm stuck with https (openssl). The nginx conf I've tried so far server { listen 443 ssl; server_name example.ddns. net...