Install wildcard certificate

abzsol

abzsol

Well-Known Member
Proxmox Subscriber
Sep 18, 2019
93
6
48
Italy
www.abzsol.com
Hi guys,

I've installed the Let's Encrypt certificate on my Mail Gateway, but I also have a wildcard certificate (PFX file) and I would like to install it instead of Let's Encrypt.
How can I do so? I've tried to search but I have not seen how to do so with a PFX file.

Thanks in advance and sorry for my inexperience.
Best regards.
 
you need to upload the certificate (and key) in PEM format
 
did you maybe enter the certificate PEM string into the private key field?
 
yeah - the PEM certificate file goes into the 'Certificate Chain' field, the PEM key goes into the 'Private Key' field. you can leave out the key if you renew the certificate later and re-use the key..
 
sure. openssl can convert most key formats into PEM if it is in another format.
 
I don't know in which format the key is at the moment on your other server. you can copy it to the PMG host (e.g. with scp) and then see what the 'file' command says about it.
 
I got the same error and then realized "key" was talking about the private key which means it wasn't really optional. Uploaded fine, after too much time debugging, once I included the private key.
 
the key is optional, if you renew the certificate using the same key and just upload the renewed certificate. it is required if the existing key and the uploaded certificate don't match.
 
fabian said:
the key is optional, if you renew the certificate using the same key and just upload the renewed certificate. it is required if the existing key and the uploaded certificate don't match.
Click to expand...
How about displaying “a key is required” instead of trying to parse an empty input and displaying a parse error? Also maybe change the “optional” label to “optional for renewals”. Simple things can save hours of debugging and keep proxmox feeling easy to use and logical to understand.
 
Thanks @BruceX! The key isn't optional even if you do renewal: spent a half of the day on this thinking it's an optional (as it's written there in interface) but it's really mandatory. Took my new cert and key from the previous one (as it's really not changed), put all of them together into appropriate fields et voila, I have my certs renewed.
Something wrong with the logic of renewal maybe? I was doing that thru Upload custom certificate button and putting cert into the 'cert' field then. Did I do something wrong?
 
  • Like
Reactions: BruceX
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back