what does this mean Certificate Manager The following CA/Certificate entries are expiring: Certificate: webConfigurator default (5b34ec933bd9b) (5b34ec933bd9b): Expiring soon, in 3 days @ 2023-12-16 03:01:00
-
hi i noticed on my sisters pfsense it had like 24 or more log errors or so kept counting down i rebooted and i noticed again
Certificate Manager
The following CA/Certificate entries are expiring:
Certificate: webConfigurator default (5b34ec933bd9b) (5b34ec933bd9b): Expiring soon, in 3 days @ 2023-12-16 03:01:00but i not sure how you fix that? whats wrong whats it truly meaning? like why is whatever is expiring
does it mean i loose my site to site open vpn connection to her pfsense box so i wont be able to access her network anymore?
-
@comet424
Its the SSL certificate, normally used by the webConfigurator. If it's really in use you can see in System > Advanced > Admin Access > SSL/TLS Certificate.SSL certificates have a limited lifetime. You can set the lifetime by yourself though, but some browsers do accept a lifetimes over several years .
In System > Certificates > Certificates you can view the certificate and renew it.
-
@viragomann
here screen shots so does this mean it would lock me out of her computer... how did it become expiring.. i set it up i didnt even know it had a limited life time.. i guess i need to check my own pfsense then too??login-to-view login-to-view -
apparently mine is expiring in februrary i just checked
-
@comet424
Just hit the renew button
login-to-view -
@viragomann ok thanks... i also re newed my own pfsense since it was expiring in february...
so what happens if it expires.. does it lock me out of pfsense? or lock me out of open vpn site to site i set up a few years ago as i just set it up and forgot about it kind a thing didnt even know there was such things as expiring things except for DHCP leases thats the only thing i knew that had a expiring
-
@comet424
It is only used for the web GUI, and you browser has to accept ip, when you go to the web interface. It depends on the browser, how exactly it handles expired certificates. Maybe it just complains, maybe it refuses to show the site.For OpenVPN you may use a different certificate if it an SSL/TLS config. If this has expired the connection will fail.
-
ah ok so wasnt serious as i thought here i thought i was going to be locked out and be not able to get back in... least i refreshed... learn something new about pfsense every day... learning experience especially for years when using a dlink or a an asus router lol