Dear
i try all these but when i try to authenticate by google i have this ssl
error
https://accounts.google.com/o/oauth2/auth?response_type=
code_uri=https%3A%2F%2Fpacketfence2.msselectronics.
gr%2Foauth2%2Fcallback_id=225737418070-kegnm6l27fg530t4u7d3b4fp9e9e5r
3 octobre 2017 16:52
*À :* packetfence-users@lists.sourceforge.net
*Cc :* Luís Torres <luistorr...@iol.pt>
*Objet :* Re: [PacketFence-users] Captive Portal certificate
Fabrice,
my bad..., the crt and key was not correctly exported.
Followed this procudure from de .pfx and it worked like you said:
ake
.sourceforge.net]
Envoyé : mardi 3 octobre 2017 16:52
À : packetfence-users@lists.sourceforge.net
Cc : Luís Torres <luistorr...@iol.pt>
Objet : Re: [PacketFence-users] Captive Portal certificate
Fabrice,
my bad..., the crt and key was not correctly exported.
Followed this procudure from de .
rceforge.net"
<packetfence-users@lists.sourceforge.net>
Cc: Luís Torres <luistorr...@iol.pt>
Subject: Re: [PacketFence-users] Captive Portal certificate
--
Check out the vibrant tech community on one of the world's most
Fabrice,
my bad..., the crt and key was not correctly exported.
Followed this procudure from de .pfx and it worked like you said:
ake the file you exported (e.g. certname.pfx) and copy it to a system
where you have OpenSSL installed. Note: the *.pfx file is in PKCS#12
format and includes
did directly from a pfx
_OPENSSL PKCS12 -IN INFRA.PFX -OUT
SERVER.PEM_
no empty lines.
But using crt and key > pem
it as
empty lines
_SSL# CAT INFRA.CRT INFRA.KEY > INFRA.PEM_
LT
Em
2017-10-03 14:54, Fabrice Durand via PacketFence-users escreveu:
> You
probably did a mistake
You probably did a mistake with the concatenated certificate.
Is there any empty lines in the file ?
Le 2017-10-03 à 09:48, Luís Torres via PacketFence-users a écrit :
>
> Hi Fabrice,
>
>
>
> Just did that, restarted the haproxy but the result was :
>
>
>
> ERROR pfcmd.pl(50729):
>
Hi Fabrice,
Just did that, restarted the haproxy but the result
was :
ERROR pfcmd.pl(50729):
pf::services::manager::haproxy=HASH(0xade6b0)->name died or has failed
to start (pf::services::manager::postStartCleanup)
the service HAproxy
wont start
regards
LT
Em 2017-10-03 14:13,
In fact haproxy terminate the ssl tunnel so you don't have to change the
ssl-certificates.conf file.
This file is just use for the admin interface now and not the portal
anymore.
So just do that: (MyCERT.crt and MyPRIVKEY.key are your certificate files)
cat conf/ssl/MyCERT.crt
thank you Fabrice,
The ssl-certificates.conf should be like this
as well? :
_SSLCERTIFICATECHAINFILE
%%INSTALL_DIR%%/CONF/SSL/SERVER.PEM_
cheers
Em 2017-10-02 23:49,
Durand fabrice via PacketFence-users escreveu:
> Hello Luís,
>
> you
need to concatenate the certificates like that:
Hello Luís,
you need to concatenate the certificates like that:
cat conf/ssl/server.crt conf/ssl/server.key > conf/ssl/server.pem
and restart haproxy
Regards
Fabrice
Le 2017-10-02 à 10:57, Luís Torres via PacketFence-users a écrit :
Hi,
to stop the cert error on the captive portal,
Hi,
to stop the cert error on the captive portal, its only need to
change it on ssl-certificates.conf to point to the correct ones?
thanks
--
Check out the vibrant tech community on one of the world's most
12 matches
Mail list logo