Hi Team,
I've recently upgraded all the PVE nodes + PBS nodes here and since that, my formerly fully trusted 3rd party certificate (used on PBS's) seems not trusted anymore. The PKI root certificate is imported on every PVE/PBS nodes and each nodes installed certificate is signed by that root CA.
Meanwhile, a simple:
from every PVE node report that everything is all trusted, all fine.
However, the "PBS storage" is not mounting on the PVE nodes for reasons beyond me honestly. If I'm injecting the fingerprint, it all works though.
But that's basically the reason I'm having my own PKI setup, to avoid such operations and use trusted certificates all around...
This is what I've done on the node's (PVE and PBS) to "trust" my root cert:
As said this was working fine prior to latest updates on both PVE (8.1.10) / PBS (3.1-4).
Is there anything that changed? Am I missing something?
Let me know,
Kind regards,
m.
I've recently upgraded all the PVE nodes + PBS nodes here and since that, my formerly fully trusted 3rd party certificate (used on PBS's) seems not trusted anymore. The PKI root certificate is imported on every PVE/PBS nodes and each nodes installed certificate is signed by that root CA.
Meanwhile, a simple:
Code:
curl -v https://pbs.domain.suffix:8007/However, the "PBS storage" is not mounting on the PVE nodes for reasons beyond me honestly. If I'm injecting the fingerprint, it all works though.
But that's basically the reason I'm having my own PKI setup, to avoid such operations and use trusted certificates all around...
This is what I've done on the node's (PVE and PBS) to "trust" my root cert:
Code:
nano /etc/ssl/certs/root.crt
update-ca-certificates -fAs said this was working fine prior to latest updates on both PVE (8.1.10) / PBS (3.1-4).
Is there anything that changed? Am I missing something?
Let me know,
Kind regards,
m.
Last edited: