How to use haproxy with valid SSL certificates other than ACME?

accidentallyadmin

I've successfully using haproxy as a reverse proxy to serve multiple websites and domains behind pfsense. But the only way I know is to use it with SSL certificates from ACME (let's encrypt) package.
Now I want to use a valid SSL certificate from other issuers like godaddy, sslshopper, etc. How do I set it up in haproxy?
All the instructions I found on internet (well, mostly), only covers the use of haproxy on pfsense with ACME certificate.

viragomann

@accidentallyadmin
HAproxy can use any SSL server certificate installed on pfSense.
In the GUI System > Certificates gives you all options you need to get the cert into pfSense. On the Certificate tab hit add and see the options at "Method".

If you have an existing certificate you can import it from a PEM or PFX file. The latter imports the whole chain.

If you need to request a certificate from a CA you can generate a CSR and give it to the CA.

Consider to import the whole chain, either via a PFX file or separately import CA and intermediate certs on the Authorities tab.

planetinse

@accidentallyadmin

I use them with Godaddy, Sectigo and more. no issues - one of the best "features" with pfsense/Haproxy combo imho. :)