Hi Thomas, the virtual machine appliances rely on the graylog-ctl script which will regenerate the Graylog configuration from a template each time you run graylog-ctl reconfigure.
Please take a look at http://docs.graylog.org/en/2.0/pages/configuration/graylog_ctl.html#install-custom-ssl-certificates for instructions about setting up custom SSL certificates in the OVA. Cheers, Jochen On Friday, 15 July 2016 10:24:14 UTC+2, Thomas Stather wrote: > > Hi > > I am using the Graylog 2.0 appliance and wanted to install my own > certificate. > > I installed the certificate under /opt/certificates and added the > following in my /opt/graylog/conf/graylog.conf: > > > # The X.509 certificate chain file in PEM format to use for securing the > web interface. > web_tls_cert_file = /opt/certificates/cert.pem > > # The PKCS#8 private key file in PEM format to use for securing the web > interface. > web_tls_key_file = /opt/certificates/sec-key.pem > > > According to this document here it should work > > http://docs.graylog.org/en/2.0/pages/configuration/web_interface.html#configuring-webif-nginx > > > But after restarting the appliance the old (self-signed) certificate is > used. > > If i enable > > web_enable_tls = true > > > then i get the following when trying to login: > > > > Graylog is restarting... > > There is no Graylog web application running at the moment, please reload > this page in a minute. It can take up to 1-2 minutes until all services are > running properly. In case this is a permanent error, check the following: > > - *Check if all services are running* - sudo graylog-ctl status shows > an overview of all running services > - *Check for errors in log files* - Relevant services write log files > here: /var/log/graylog/*/current > - *Ask for help* - If there is no way to fix the issue ask for help: > https://github.com/Graylog2/graylog2-images/issues > > > > What am i doing wrong? > > Best, > Thomas > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/d619807e-0182-4188-a620-28a2233454c8%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
