nextcloud_on_docker icon indicating copy to clipboard operation
nextcloud_on_docker copied to clipboard

Question: Location of root certificate that signs private cert?

Open edremington opened this issue 4 years ago • 2 comments

Where can I find the root cert that the self-signed ssl certs are signed with?

-or- is there a way to provide a private root cert to sign the self signed ssl certs?

Use case: I am running in a private behind a firewall, I would like to install the root cert that signs the self-signed ssl certs so that I can avoid the annoying warnings; Where can I go to get the root cert?

Also, IF I wanted to provide a root certificate that would be used to sign the self signed certs, is this possible?

edremington avatar Dec 09 '20 23:12 edremington

It looks like traefik stores its certs in /certs. You can add that volume and then add your own self signed cert.

Below is the reference to do this: https://stackoverflow.com/questions/56639602/traefik-and-self-signed-ssl

azonictechnophile avatar Dec 09 '20 23:12 azonictechnophile

That reference was out of date. To add your own certs now you need to edit the dynamic.yaml file and insert the following:

tls: stores: default: defaultCertificate: certFile: path/to/cert.crt keyFile: path/to/cert.key

The yaml format is not showing in the comment. You can view the instructions here for proper format: https://doc.traefik.io/traefik/https/tls/

azonictechnophile avatar Dec 10 '20 00:12 azonictechnophile