PBS and Let's Encrypt

degan

Member
Sep 25, 2019
19
0
6
Wuerzburg/Germany
Hello,

i noticed that the command "proxmox-backup-manager cert info | grep Fingerprint" and "openssl x509 -noout -in /etc/proxmox-backup/proxy.pem -fingerprint -sha256" gives me the same fingerprint.

If i now update this certificate and key with one from Let's Encrypt i get certificate warnings in Proxmox VE, i am right?
Also on any renewal of the certificate!?

I dont want to edit the fingerprint in my PVE hosts all the time i renew the LE Certificate.
Any solutions?
I think the best solution ist to buy truted certificate, isnt it?
 
the fingerprint is optional on the client-side (which includes PVE storage setup), in case you use a certificate signed by a CA trusted by the client system, simply leave it out.
 
  • Like
Reactions: degan

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!