Proxmox Install SSL/TLS Certificates
In this video we show you how to install a signed SSL/TLS certificate in Proxmox
We show how to create the private key, certificate server request and signed certificate using OpenSSL
Then cover how you can install the key and certificate through the GUI on a standalone server
Because a cluster replicates information among servers, we show a different method so that you can install private keys and certificates for these as well
=============================
SUPPORT THE CHANNEL
Donate through Paypal:
https://paypal.me/DavidMcKone
Donate through Buy Me A Coffee:
https://buymeacoffee.com/dmckone
Become a monthly contributor on Patreon:
/ dmckone
Become a monthly contributor on YouTube:
/ @techtutorialsdavidmckone
==============================
==============================
MEDIA LINKS:
Website - https://www.techtutorials.tv/
Twitter - / dsmckone1
Facebook - / dsmckone
Linkedin - / dmckone
Instagram - / david.mckone
==============================
Steps Taken Using OpenSSL
Login to the Root CA then change to the ca folder
cd ca
1) Create the private key
openssl genrsa -out private/pvenode1.key 2048
2) Create a configuration file
nano csr/pvenode1-csr.conf
[ req ]
'man req'
Used by the req command
default_bits = 2048
distinguished_name = req_distinguished_name
req_extensions = req_ext
prompt = no
[ req_distinguished_name ]
Certificate signing request
countryName = GB
stateOrProvinceName = England
organizationName = TempLab
commonName = pvenode1.templab.lan
[ req_ext ]
subjectAltName = @alt_names
[ alt_names ]
DNS.1 = pvenode1.templab.lan
3) Generate the certificate signing request (CSR)
openssl req -new -key private/pvenode1.key -sha256 -out csr/pvenode1.csr -config csr/pvenode1-csr.conf
4) Create signed certificate
openssl ca -config root-ca.conf -notext -in csr/pvenode1.csr -out certs/pvenode1.crt -extensions req_ext -extfile csr/pvenode1-csr.conf
5) Upload the key and certificate
In the GUI this is relatively simple if you use SFTP for instance
For a cluster, we'll replace the existing files
Connect to a PVE server and navigate to /etc/pve/nodes
Replicate the folder structure on the local computer e.g.
pve-node1
pve-node2
pve-node3
Copy the private keys and certificates to the correct local folder and rename them
pve-ssl.key
pve-ssl.pem
Backup the existing files in the server folders on the server e.g. rename them
Copy the folders from the local computer to the server to copy the signed certificates and new private keys across
SSH into the server and restart the service
systemctl restart pveproxy
Check the new certificate is accepted, if so restart the service on the other servers and check they are working as well
Chapters
00:00 Intro
00:57 Overview
03:50 Create Key and Certificate
09:30 Install Certificate Through GUI
13:54 Install Certificates For A Cluster
Credits
LoveLife | Instrumental Prod. Blue Mango | EQMUSEQ.COM by Don Da Vinci
https://soundcloud.com/eqmuseq/loveli...
proxmox,proxmox ve,proxmox tutorial,proxmox ssl certificate,proxmox tls certificate,proxmox install ssl certificate,proxmox install tls certificate
Смотрите видео Proxmox Install SSL/TLS Certificates онлайн, длительностью часов минут секунд в хорошем качестве, которое загружено на канал Tech Tutorials - David McKone 03 Август 2022. Делитесь ссылкой на видео в социальных сетях, чтобы ваши подписчики и друзья так же посмотрели это видео. Данный видеоклип посмотрели 17,492 раз и оно понравилось 247 посетителям.
