[ previous ] [ next ] [ threads ]
 
 From:  Jonathan Karras <jkarras at karras dot net>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] HTTPS/SSL Certificate for WebGUI locked me out.
 Date:  Wed, 18 Jan 2006 20:10:47 -0700
I used it fine with a custom SSL cert.

You may want to run the following commands to be sure the key and the
cert are seperate and that the key has no password.

http://www.madboa.com/geek/openssl/#key-removepass

Jonathan

Jimmy Bones (Mhottie) wrote:
> I just wanted to bump this, and see if anyone has had success with using
> their own certificate for the WebGUI SSL connection?
> 
> I have tried several times, and we are always getting locked out.
> 
> -j
> 
> 
> On 1/10/06, Jimmy Bones (Mhottie) <mhottie at gmail dot com> wrote:
> 
>>I contemplated that when creating the certificate and ensured there was no
>>private key password.
>>
>>Thank you though.
>>
>>On 1/10/06, Vince Van De Coevering <vpv at figaros dot com> wrote:
>>
>>>Dumb question...
>>>
>>>Does your private key require a password?  Does m0n0 have a provision to
>>>ask
>>>you for it when booting?  I had an apache server that refused to start
>>>unless the password was provided for the private key.  I was able to fix
>>>
>>>this using openssl to remove the password requirement from the key.
>>>
>>>Will this fix your m0n0 issue?  I don't know....
>>>
>>>Vince Van De Coevering
>>>IT Manager
>>>Figaro's Italian Pizza, Inc.
>>>503-371-9318 x216
>>>vpv at figaros dot com
>>>
>>>
>>>>-----Original Message-----
>>>>From: Jimmy Bones (Mhottie) [mailto:mhottie at gmail dot com]
>>>>Sent: January 10, 2006 2:49 PM
>>>>To: Manuel Kasper
>>>>Cc: m0n0wall at lists dot m0n0 dot ch
>>>>Subject: Re: [m0n0wall] HTTPS/SSL Certificate for WebGUI
>>>>locked me out.
>>>>
>>>>
>>>>Ok, Thank you for that, that clearly worked.
>>>>
>>>>Now, what could be wrong with the certificate, and how/where
>>>>would I find
>>>>logs pertaining to it?
>>>>
>>>>thanks.
>>>>
>>>>-j
>>>>
>>>>On 1/10/06, Manuel Kasper < mk at neon1 dot net> wrote:
>>>>
>>>>>Jimmy Bones (Mhottie) wrote:
>>>>>
>>>>>
>>>>>>I just installed a certificate from our internal CA to the
>>>>>>Settings->Advanced WebGUI certificate area. We used the
>>>>
>>>>correct Cert
>>>>
>>>>>type,
>>>>>
>>>>>>had the cert and private key in pem format, etc.. After
>>>>
>>>>we rebooted the
>>>>
>>>>>>m0n0wall, we cannot get into it any more. We have it set
>>>>
>>>>to only use
>>>>
>>>>>HTTPS
>>>>>
>>>>>>for login, the page simply times out.
>>>>>>
>>>>>>Any suggestions??
>>>>>
>>>>>I can't comment on why the SSL certificate didn't work, but
>>>>
>>>>to go back
>>>>
>>>>>to HTTP, simply run "Set up LAN IP address" from the
>>>>
>>>>console, enter the
>>>>
>>>>>same LAN IP address and DHCP server details that you
>>>>
>>>>already use, and
>>>>
>>>>>it'll ask you whether you want to revert to HTTP for the webGUI.
>>>>>
>>>>>- Manuel
>>>>>
>>>>
>>
> 
signature.asc (0.8 KB, application/pgp-signature)