Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    certificates expired?

    Scheduled Pinned Locked Moved General pfSense Questions
    10 Posts 4 Posters 1.2k Views 4 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A Offline
      AvePlague
      last edited by

      I got this message in the notifications of the back end to my firewall but I don't know what it really means, can you help me?

      The following CA/Certificate entries are expiring:
      Certificate: webConfigurator default (0000009ff396c) (0000009ff396c): Expired 18606 days ago @ 2022-01-12 03:01:00

      I tried to search but didn't find anything.

      V GertjanG 2 Replies Last reply Reply Quote 0
      • V Offline
        viragomann @AvePlague
        last edited by

        @aveplague
        That's the SSL certificate for the pfSense web interface (webConfigurator). The message says, it's already expired. You should have got already a warning before.

        As the cert is already expired your browser might struggle to connect to the web interface.

        If you can access pfSense check if the stated cert is even in use: System > Advanced > Admin Access > SSL/TLS Certificate

        If it is go to System > Certificate Manager > Certificates, search for the certificate and renew it by hitting the "Reissue/renew" button at the right side.

        1 Reply Last reply Reply Quote 1
        • stephenw10S Offline
          stephenw10 Netgate Administrator
          last edited by

          Mmm, like it expired 50 years ago. Which seems..... unlikely!

          I'd guess that's epoch time 0? Something odd with that cert, you might want to investigate further.

          Steve

          1 Reply Last reply Reply Quote 1
          • GertjanG Offline
            Gertjan @AvePlague
            last edited by

            @aveplague
            Check the time of your system.
            NTP is doing well ?

            No "help me" PM's please. Use the forum, the community will thank you.
            Edit : and where are the logs ??

            1 Reply Last reply Reply Quote 1
            • A Offline
              AvePlague
              last edited by

              @viragomann said in certificates expired?:

              rch for the certificate and renew it by hitting

              Thanks for the help. I am new to firewalls like this so I am learning a lot of stuff I don't know much about. I renewed the certs and everything seems fine. I didn't know I had to renew certs, but that's because I wasn't properly analyzing my firewalls config or back end.

              I just have the vpn to sort out which I can't seem to get much help on. https://forum.netgate.com/topic/168749/first-time-user-config-guides-for-vpn-on-netgate-2100-firewall if you can help me get it setup and or understand the choices available, I may be able to use this thing like it should be used.

              thanks

              V 1 Reply Last reply Reply Quote 0
              • V Offline
                viragomann @AvePlague
                last edited by

                @aveplague said in certificates expired?:

                I didn't know I had to renew certs, but that's because I wasn't properly analyzing my firewalls config or back end.

                You can activate notification in System > Advanced > Notifications and also check this box at the top of the page:
                af056e92-781c-4f10-8513-b0a2de6ece97-grafik.png

                1 Reply Last reply Reply Quote 0
                • stephenw10S Offline
                  stephenw10 Netgate Administrator
                  last edited by

                  @aveplague said in certificates expired?:

                  The following CA/Certificate entries are expiring:
                  Certificate: webConfigurator default (0000009ff396c) (0000009ff396c): Expired 18606 days ago @ 2022-01-12 03:01:00

                  I assume that message was generated by that. The clock must have been wrong when the cert was created.

                  A 1 Reply Last reply Reply Quote 0
                  • A Offline
                    AvePlague @stephenw10
                    last edited by

                    @stephenw10 Probably because when I setup my machine I did so without the Ethernet connected. ? Thing is I setup the computer a bit before I even held the firewall in my hand an set that up. So IDK what caused this, but it seems to be correct now.

                    1 Reply Last reply Reply Quote 0
                    • stephenw10S Offline
                      stephenw10 Netgate Administrator
                      last edited by

                      Typically it would be because the firewall hardware either doesn't have a battery backed RTC or the battery has gone flat.
                      Neither is a problem as long as it can sync via ntp.

                      Steve

                      A 1 Reply Last reply Reply Quote 0
                      • A Offline
                        AvePlague @stephenw10
                        last edited by

                        @stephenw10 okay thanks

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.