FreeNAS LDAP CA issue

ignaciop

Cadet
Joined
Sep 18, 2019
Messages
8
I imported a CA but the certificate option does not show the CA only the freenas_default certificate (not CA). In the help for that line it states to import a CA which is imported but it only shows imported certificates not CA. Saw the issue upon upgrading from 11.2 U6, I have wiped the settings to default and re-imported the CA and still the same issue.
 

anodos

Sambassador
iXsystems
Joined
Mar 6, 2014
Messages
9,543
I imported a CA but the certificate option does not show the CA only the freenas_default certificate (not CA). In the help for that line it states to import a CA which is imported but it only shows imported certificates not CA. Saw the issue upon upgrading from 11.2 U6, I have wiped the settings to default and re-imported the CA and still the same issue.
Do you see the CA if you run the command midclt call certificateauthority.query? Is this in the legacy UI or new UI? Is there a difference between them?
 

ignaciop

Cadet
Joined
Sep 18, 2019
Messages
8
I do see the CA if I run that command. Also I am running the new UI. Should I try in the legacy UI?
 

ignaciop

Cadet
Joined
Sep 18, 2019
Messages
8
How do you access the legacy UI in 11.3? I cannot find it in the top bar where it was lately in 11.2 U6
 

anodos

Sambassador
iXsystems
Joined
Mar 6, 2014
Messages
9,543
How do you access the legacy UI in 11.3? I cannot find it in the top bar where it was lately in 11.2 U6
Oh, this is 11.3? In 11.3 the behavior has changed. CA certs that are uploaded to the webui are automatically used appended to /etc/ssl/truenas_cacerts.pem, which is then set as TLS_CACERT in the ldap.conf. No additional steps are needed. The certificate dropdown is used for cert-based authentication (SASL_EXTERNAL).
 
Top