Wildcard certificate
- Thread starter pavels
- Start date
I have been reading all this and I am non the clearer as to how to resolve my issues.
I have a letsencrypt wildcard certificate for my domain, but I do not understand why I need an account to add the domain to my proxmox server.
Is there a step by step guide to installing my own SSL certificate onto my proxmox server?
Thanks
Lawrence
I have a letsencrypt wildcard certificate for my domain, but I do not understand why I need an account to add the domain to my proxmox server.
Is there a step by step guide to installing my own SSL certificate onto my proxmox server?
Thanks
Lawrence
you can use any custom cert chain you want (including a wild card cert you obtained however you want from Let's Encrypt or other ACME-based CAs):
https://pve.proxmox.com/pve-docs/pve-admin-guide.html#sysadmin_certs_upload_custom
the corresponding CLI command (e.g., if you want to integrate it directly into your ACME client): "pvenode cert set ..." (you need to reload the pveproxy systemd service as well afterwards to use the new certificate), it's also available over the API.
https://pve.proxmox.com/pve-docs/pve-admin-guide.html#sysadmin_certs_upload_custom
the corresponding CLI command (e.g., if you want to integrate it directly into your ACME client): "pvenode cert set ..." (you need to reload the pveproxy systemd service as well afterwards to use the new certificate), it's also available over the API.
Fabian,
I did the 5 day support class with Proxmox online, that was with my last company. I am running the free version at home and that is where I am trying to install a letsencrypt wildcard certificate onto my proxmox instance.
I am just a little confused with the logix for ACME, I do not understand why I needed to add a letsencrypt account when I already have the certificates on my primary web server.
I was looking to have the certs added to my proxmox.lsl-technology.com server.
Thanks
Lawrence
what I have now tried without success. I copied teh private key and the fullchain onto the proxmox server with the names privkey.pem and fullchain.pem.
Placed them into the /root directory.
ran the command
pvenode cert set privkey.pem fullchain.pem -force
and got the following error.
certificates: invalid format - not a valid PEM-formatted string.
key: invalid format - not a valid PEM-formatted string.
pvenode cert set <certificates> [<key>] [OPTIONS] [FORMAT_OPTIONS]
What am I doing wrong. The files are in .pem format.
Thanks
Lawrence
Placed them into the /root directory.
ran the command
pvenode cert set privkey.pem fullchain.pem -force
and got the following error.
certificates: invalid format - not a valid PEM-formatted string.
key: invalid format - not a valid PEM-formatted string.
pvenode cert set <certificates> [<key>] [OPTIONS] [FORMAT_OPTIONS]
What am I doing wrong. The files are in .pem format.
Thanks
Lawrence