Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    ssl issue - no gui

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 2 Posters 537 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      Koby Peleg Hen
      last edited by

      Hello Guy ,
      My Pf Ver 2.6 has an trusted ssl cert and it is about to expire.
      I tried to UPDATE the current ssl with new primary + cert and save it. Looks fine, it does show the right detail (begin time , end time etc) at the cert manager on pf.
      But when I check the browser it is still show the old one.
      After booting there is no gui , but i figure out that there is an ssh access so I did that and run "netstat" no service is listening to port 443\80.
      I Did Restore from console and the gui working fine again.

      Trying again , this time I Create NEW ssl and set the https to use it ==> after reboot as previous no gui ....

      Any advice , my ssl is going to expire soon...

      Koby Peleg Hen

      johnpozJ 1 Reply Last reply Reply Quote 0
      • johnpozJ
        johnpoz LAYER 8 Global Moderator @Koby Peleg Hen
        last edited by

        @koby-peleg-hen said in ssl issue - no gui:

        I tried to UPDATE the current ssl with new primary + cert and save it.

        If you have a new cert to use for the gui - where did it come from? Did you create it in the cert manager - you got it from some other CA?

        If you got it from somewhere you would import the cert and key.. And then change the gui to use that cert.

        An intelligent man is sometimes forced to be drunk to spend time with his fools
        If you get confused: Listen to the Music Play
        Please don't Chat/PM me for help, unless mod related
        SG-4860 24.11 | Lab VMs 2.8, 24.11

        1 Reply Last reply Reply Quote 0
        • K
          Koby Peleg Hen
          last edited by

          @johnpoz said in ssl issue - no gui:

          Hello johnpoz ,
          This is exactly what i meant.
          I did Import a Private Key + Cert from Sectigo RSA.

          Best regards
          Koby Peleg Hen

          johnpozJ 1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator @Koby Peleg Hen
            last edited by

            @koby-peleg-hen well you do you - but I never got why anyone would ever do this.. Did you get it free - if so I could attempt to use one of their certs. Looks like not single domain 78$ for six years.

            For starters I don't ever see using an actual public domain on my pfsense gui? I own multiple domains, don't use any of them internally.. Pointless to do so.. I use local.lan - but at some point will switch over to home.arpa for local domain.

            But if did want to use public - why not just use free ACME cert?

            So did you create the CSR and have them sign it? How exactly did you go about getting the cert and key..

            Without some actual details, going to be impossible to help figure out what is wrong. What does the log say? You can setup pfsense to allow both http and https access - so even if the gui doesn't like the cert for some reason, the gui should be available just over http so you can see the log, etc.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.