Hi,
I created a new virtual machine (myvm1.mydomain.com) on a new physical proxmox 4 host (myhost.mydomain.com).
As I have a wildcard certificate for my domain (*.mydomain.com), I replaced /etc/pve/local/pve-ssl.pem with my wildcard certificate.
I then tried to start a VM and got this error message:
Then I appended the complete ca chain to /etc/pve/pve-root-ca.pem
But now I get this message :
As a workaround, I ran "pvecm updatecerts -f" which regenerated /etc/pve/local/pve-ssl.pem and /etc/pve/local/pve-ssl.key but I'm currently stuck on using a self signed certificate whereas I own a real wildcard certificate.
What did I miss?
Thanks for reading (and for further replies)
I created a new virtual machine (myvm1.mydomain.com) on a new physical proxmox 4 host (myhost.mydomain.com).
As I have a wildcard certificate for my domain (*.mydomain.com), I replaced /etc/pve/local/pve-ssl.pem with my wildcard certificate.
I then tried to start a VM and got this error message:
Code:
Running as unit 200.scope.
kvm: -vnc unix:/var/run/qemu-server/200.vnc,x509,password: Failed to start VNC server: Our own certificate /etc/pve/local/pve-ssl.pem failed validation against /etc/pve/pve-root-ca.pem: The certificate hasn't got a known issuerThen I appended the complete ca chain to /etc/pve/pve-root-ca.pem
But now I get this message :
Code:
Running as unit 200.scope.
kvm: -vnc unix:/var/run/qemu-server/200.vnc,x509,password: Failed to start VNC server: The certificate /etc/pve/pve-root-ca.pem basic constraints do not show a CAAs a workaround, I ran "pvecm updatecerts -f" which regenerated /etc/pve/local/pve-ssl.pem and /etc/pve/local/pve-ssl.key but I'm currently stuck on using a self signed certificate whereas I own a real wildcard certificate.
What did I miss?
Thanks for reading (and for further replies)
