Bug #5840
closedInstalling self signed SSL certificate breaks https webgui
0%
Description
I have created a self signed SSL certificate with openssl and xca GUI which I have stored in the pfSense webgui in certificate manager. When I choose this certificate as the webgui https certificate it breaks the webgui: the webserver doesn't respond any longer to https requests. I have solved this by editing /conf/config.xml via serial console and set webgui settings back to "http" instead of "https". Now I can access the webgui again. When I switch back to the previous pfsense internal out of the box certificate, the webgui is accessible via https. When I switch to my own certificate, it breaks again...
Updated by Jim Pingle about 8 years ago
- Status changed from New to Not a Bug
Not a general issue, likely something wrong with the certificate or the way it was imported. The default certificates are self-signed, and importing an externally generated self-signed certificate also works. Post on the forum for assistance, and be sure to upgrade to a current version.
Also note that if you're using Firefox and have the exact same self-signed certificate, or one with an identical subject, on more than ~8 systems stored in the browser's cert exceptions, you'll trigger a firefox bug that puts it into a loop attempting to validate the cert. Discuss on the forum for more details.