Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Auto-created webConfiguration default certificate

    Scheduled Pinned Locked Moved General pfSense Questions
    9 Posts 2 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M Offline
      mtk
      last edited by

      Hey,
      I've installed the ACME package and created a Certificate with it. I want to use it as the webConfigurator's SSL Certificate and it does appear in the list.
      Every time I select it and save, a new webConfiguration default certificate is being created and selected.

      When I set any of the webConfiguration default certificate I now have in the list, it does maintain the setting.

      How can I prevent this from happening?
      ![Screen Shot 2017-04-23 at 14.12.06.png](/public/imported_attachments/1/Screen Shot 2017-04-23 at 14.12.06.png)
      ![Screen Shot 2017-04-23 at 14.12.06.png_thumb](/public/imported_attachments/1/Screen Shot 2017-04-23 at 14.12.06.png_thumb)
      ![Screen Shot 2017-04-23 at 14.12.57.png](/public/imported_attachments/1/Screen Shot 2017-04-23 at 14.12.57.png)
      ![Screen Shot 2017-04-23 at 14.12.57.png_thumb](/public/imported_attachments/1/Screen Shot 2017-04-23 at 14.12.57.png_thumb)

      1 Reply Last reply Reply Quote 0
      • D Offline
        doktornotor Banned
        last edited by

        You do NOT have any ACME certificate there. You cannot use "private key only" as certificate. IOW, you created no certificate at all with the ACME package.

        1 Reply Last reply Reply Quote 0
        • M Offline
          mtk
          last edited by

          @doktornotor:

          You do NOT have any ACME certificate there. You cannot use "private key only" as certificate. IOW, you created no certificate at all with the ACME package.

          pfSense is the certificate created by the ACME Package

          1 Reply Last reply Reply Quote 0
          • D Offline
            doktornotor Banned
            last edited by

            Geez, read the screenshot you posted!

            1 Reply Last reply Reply Quote 0
            • M Offline
              mtk
              last edited by

              @doktornotor:

              Geez, read the screenshot you posted!

              Well, it is how ACME created the certificate.

              But even if you are right, why isn't there a proper error message and why is a new certificate being automatically generated?

              1 Reply Last reply Reply Quote 0
              • D Offline
                doktornotor Banned
                last edited by

                No, this is NOT how the ACME package creates certificates. You either forgot to use the Issue/Renew button there, or something failed. You cannot use a private key alone for webgui.

                1 Reply Last reply Reply Quote 0
                • M Offline
                  mtk
                  last edited by

                  @doktornotor:

                  No, this is NOT how the ACME package creates certificates. You either forgot to use the Issue/Renew button there, or something failed. You cannot use a private key alone for webgui.

                  OK, I understand, I will go over the process again and report back.

                  My question regarding the alert/notification/error still stands.

                  1 Reply Last reply Reply Quote 0
                  • D Offline
                    doktornotor Banned
                    last edited by

                    What alert/notification/error?

                    1 Reply Last reply Reply Quote 0
                    • M Offline
                      mtk
                      last edited by

                      @doktornotor:

                      What alert/notification/error?

                      If I'm trying to set that "private key" which I shouldn't be able, I would expect an error/alert message.
                      not only I don't get that a new default webConfigurator certificate is being generated and assigned to be used - why?

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post
                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.