Hello,
Apologies if this is in the wrong place.
But i've been trying for days now to get my head around certificate chains, and i've finally cracked it. However, I now have a new issue that FreeNAS is deciding to revert all my changes whenever I reboot...
Basically I have the combined .crt chain that is correct and the corresponding private key and when I upload it (paste it) into the WebUI, all is good and everything works fine (mobile's are my main concern here). However, when I reboot and view the certificate it appears as though FreeNAS has removed the second certificate from the chain. (And the mobile no longer works)
So i tried uploading them through scp into /etc/certificates and using 'cat' - that worked too. I changed the crt filename in the nginx conf to match the new key and that seemed to work too. But then the same thing happens every time i reboot.
Initially, I had been using a different name for the certificate in the webUI to what I actually named the key file. So I changed it so that they would match, thinking it was doing something weird. But when I rebooted just now for the 100th time, the name's the same in the webUI - nginx is pointing to the right key, but the certificate itself (nano /etc/certificates/combined.crt) only has one certificate, not the chain.
Is this a bug, or am I missing something here?
Many thanks
[EDIT]: I've just noticed that upon reboot - the key in the webUI is the correct chain (and has two certs), but the key that nginx is using only has one certificate in the 'chain' (in /etc/certificates)
Apologies if this is in the wrong place.
But i've been trying for days now to get my head around certificate chains, and i've finally cracked it. However, I now have a new issue that FreeNAS is deciding to revert all my changes whenever I reboot...
Basically I have the combined .crt chain that is correct and the corresponding private key and when I upload it (paste it) into the WebUI, all is good and everything works fine (mobile's are my main concern here). However, when I reboot and view the certificate it appears as though FreeNAS has removed the second certificate from the chain. (And the mobile no longer works)
So i tried uploading them through scp into /etc/certificates and using 'cat' - that worked too. I changed the crt filename in the nginx conf to match the new key and that seemed to work too. But then the same thing happens every time i reboot.
Initially, I had been using a different name for the certificate in the webUI to what I actually named the key file. So I changed it so that they would match, thinking it was doing something weird. But when I rebooted just now for the 100th time, the name's the same in the webUI - nginx is pointing to the right key, but the certificate itself (nano /etc/certificates/combined.crt) only has one certificate, not the chain.
Is this a bug, or am I missing something here?
Many thanks
[EDIT]: I've just noticed that upon reboot - the key in the webUI is the correct chain (and has two certs), but the key that nginx is using only has one certificate in the 'chain' (in /etc/certificates)