[PVE-User] Proxmox 2.1 web server certificate change

Adnan RIHAN axel50397 at gmail.com
Mon Oct 8 11:26:01 CEST 2012


Hey !
Thank you.

I don't have the JAVA certificate error anymore BUT, I still have to confirm the "signature" of the java applet when it loads, signed by "www.proxmox.com".

And it's not a problem, my "external applet" is working now, thank you.
--  
Cordialement, Adnan RIHAN.
Président-Fondateur de l'association (de loi 1901) Virtual-Info (http://www.virtual-info.info/), hébergeur Web et Serveurs de Jeux.
Directeur-Technique pour le groupe Rininvest.
Consultant (http://rihan.fr/)-Technicien Supérieur en Informatique de Gestion.
Ambassadeur Qt (http://lyt.me/7E) (Projet Tag-PG (http://rihan.fr/projects/system/tagpg)).


Le lundi 8 octobre 2012 à 09:00, Eneko Lacunza a écrit :

> FYI
> --  
> Zuzendari Teknikoa / Director Técnico
> Binovo IT Human Project, S.L.
> Telf. 943575997
> 943493611
> Astigarraga bidea 2, planta 6 dcha., ofi. 3-2; 20180 Oiartzun (Gipuzkoa)
> www.binovo.es (http://www.binovo.es)
>  
> Message transmis :
> > De : Eneko Lacunza <elacunza at binovo.es>
> > À : pve-user at pve.proxmox.com
> > Date : mardi 15 mai 2012 11:06:34
> > Sujet : Proxmox 2.1 web server certificate change
> >  
> > Hi all,
> >  
> > This is a mini-howto for changing the web server certificate in a
> > Proxmox 2.1 installation. I did so for our production servers to have a
> > certificate created with our own CA.
> >  
> > 3 files are needed:
> >  
> > * ca.crt : CA certificate file in PEM format
> > * server.key : non-password protected private key
> > * server.pem : server certificate from CA in PEM format
> >  
> > You can create the previous files following any standard openssl
> > certificate generation howto.
> >  
> > 1. Backup PVE created files
> > cp /etc/pve/pve-root-ca.pem /etc/pve/pve-root-ca.pem.orig
> > cp /etc/pve/pve-www.pem (http://www.pem) /etc/pve/pve-www.pem.orig (http://www.pem.orig)
> > cp /etc/pve/local/pve-ssl.key /etc/pve/local/pve-ssl.key.orig
> > cp /etc/pve/local/pve-ssl.pem /etc/pve/local/pve-ssl.pem.orig
> >  
> > 2. Copy our own certificates
> > cp server.key /etc/pve/pve-www.pem (http://www.pem)
> > cp server.key /etc/pve/local/pve-ssl.key
> > cp server.pem /etc/pve/local/pve-ssl.pem
> > cp ca.crt /etc/pve/pve-root-ca.pem
> >  
> > 3. Reload apache config
> > /etc/init.d/apache reload
> >  
> > That's it. It is important to change /etc/pve/pve-www.pem (http://www.pem)
> > and /etc/pve/pve-root-ca.pem because otherwise VM console won't load due
> > to a Java cert validation error.
> >  
> > Feel free to post this to the wiki if you think it's valuable.
> >  
> > Cheers
> > Eneko
> >  
> > --  
> > Zuzendari Teknikoa / Director Técnico
> > Binovo IT Human Project, S.L.
> > Telf. 943575997
> > 943493611
> > Astigarraga bidea 2, planta 6 dcha., ofi. 3-2; 20180 Oiartzun (Gipuzkoa)
> > www.binovo.es (http://www.binovo.es)
> >  
> >  
>  
>  


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://pve.proxmox.com/pipermail/pve-user/attachments/20121008/b0fb2e51/attachment-0013.html>


More information about the pve-user mailing list