Hi Friends,
i have spend many Times with SSL. Via SSL Checkers and OPENSSL CLI Check everything fine, but VNC Console show every time error (error 500, Input to long etc. etc.).
This is my finaly Solutions and i hope- for every Users with Comodo Certs is helpful. Now everything run and also in Safari.
I have used manual from symmcom (thank you Guy)- only added exactly files names and reboot.
1. Backup:
2. Download Cert´s from Provider
3. Create pve-ssl.pem
Remove old
Create new (in this case with vim- but you can naturally use also nano or something what you want
Paste your certs in this order exactly (only text
4. Create pve-root-ca.pem
Remove old
Create new (in this case with vim- but you can naturally use also nano or something what you want
Paste your certs in this order exactly (only text
5. Create pve-ssl.key
Remove old
Create new (in this case with vim- but you can naturally use also nano or something what you want
Almost Finish
I recommend here also hard reboot
You can use naturally CAT ( cat source-file1 source.file2 > output.file)for copy, but i have this making more times with cat and nothing. Just copy&paste one time and everything was fine. I dont know. Have a great Day!
ps: sorry for bad english i speak czech and germany
i have spend many Times with SSL. Via SSL Checkers and OPENSSL CLI Check everything fine, but VNC Console show every time error (error 500, Input to long etc. etc.).
This is my finaly Solutions and i hope- for every Users with Comodo Certs is helpful. Now everything run and also in Safari.
I have used manual from symmcom (thank you Guy)- only added exactly files names and reboot.
1. Backup:
Code:
[COLOR=#333333]cp /etc/pve/local/pve-ssl.pem /etc/pve/local/pve-ssl.pem.orig
[/COLOR][COLOR=#333333]cp /etc/pve/local/pve-ssl.key /etc/pve/local/pve-ssl.key.orig
[/COLOR][COLOR=#333333]cp /etc/pve/pve-root-ca.pem /etc/pve/pve-root-ca.pem.orig[/COLOR]
2. Download Cert´s from Provider
3. Create pve-ssl.pem
Remove old
Code:
rm [COLOR=#333333]/etc/pve/local/pve-ssl.pem[/COLOR]
Code:
vim /etc/pve/local/pve-ssl.pem
Code:
-----BEGIN CERTIFICATE-----
MyDomain.crt
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
COMODORSADomainValidationSecureServerCA.crt
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
COMODORSAAddTrustCA.crt
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
AddTrustExternalCARoot.crt
-----END CERTIFICATE-----
4. Create pve-root-ca.pem
Remove old
Code:
rm [COLOR=#333333]/etc/pve/pve-root-ca.pem[/COLOR]
Code:
vim /etc/pve/local/pve-ssl.pem
Code:
-----BEGIN CERTIFICATE-----
COMODORSADomainValidationSecureServerCA.crt
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
COMODORSAAddTrustCA.crt
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
AddTrustExternalCARoot.crt
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MyDomain.crt
-----END CERTIFICATE-----
5. Create pve-ssl.key
Remove old
Code:
rm [COLOR=#333333]/etc/pve/local/pve-ssl.key[/COLOR]
Code:
vim /etc/pve/local/pve-ssl.key
Code:
-----BEGIN PRIVATE KEY-----
Paste your Key
-----END PRIVATE KEY-----
Almost Finish
I recommend here also hard reboot
Code:
[COLOR=#333333]service pveproxy restart
[/COLOR][COLOR=#333333]service pvedaemon restart
[/COLOR][COLOR=#333333]reboot
[/COLOR]
You can use naturally CAT ( cat source-file1 source.file2 > output.file)for copy, but i have this making more times with cat and nothing. Just copy&paste one time and everything was fine. I dont know. Have a great Day!
ps: sorry for bad english i speak czech and germany