Hi all!
Recently I've changed the configuration of my PVE instances, in order to reach them via DNS domain, so I have my Vault from hashicorp as CA, and I update my client certificate with an automated script, ok, all good till here.
The problem is that on my PDM instance, if I remove and then re-add my cluster it works till the automated script update the certificate, now, the error is that the pdm can't confirm the authenticity of the CA who's signed the client certificate, I haven't still tried to insert a certificate on the PDM via GUI, but I've tried to insert the CA in the /etc/ssl/certs and then update-ca-certificates, but it says:
Updating certificates in /etc/ssl/certs...
0 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d...
there is a way to put the CA on the pdm in order to verify the certificates of the pve nodes? if I put a certificate on the pdm using the GUI, will it be able to communicate with the other pve nodes?
Thanks in advance for any suggestion
Recently I've changed the configuration of my PVE instances, in order to reach them via DNS domain, so I have my Vault from hashicorp as CA, and I update my client certificate with an automated script, ok, all good till here.
The problem is that on my PDM instance, if I remove and then re-add my cluster it works till the automated script update the certificate, now, the error is that the pdm can't confirm the authenticity of the CA who's signed the client certificate, I haven't still tried to insert a certificate on the PDM via GUI, but I've tried to insert the CA in the /etc/ssl/certs and then update-ca-certificates, but it says:
Updating certificates in /etc/ssl/certs...
0 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d...
there is a way to put the CA on the pdm in order to verify the certificates of the pve nodes? if I put a certificate on the pdm using the GUI, will it be able to communicate with the other pve nodes?
Thanks in advance for any suggestion
