OmniOS/napp-it self-sign certificate

Notice: Page may contain affiliate links for which we may earn a small commission through services like Amazon Affiliates or Skimlinks.

esquire1968

New Member
Oct 4, 2018
2
0
1
Hello!

Actually I get an error message (web-site is not safe) when I try to access the napp-it gui (https://ip-of-my-server:82). How can I upload as self-signed certifaicate to the server?

I didn't found any how-to for OmniOS or napp-it.

Many thanks in advance.

Thomas
 

gea

Well-Known Member
Dec 31, 2010
3,141
1,184
113
DE
You must simply click on continue and accept the self signed certificate.

If you want to avoid this warning you must add an official certificate for the server hostname in a domain for the mini httpd webserver in /var/web-gui/_log/mini_httpd.pem

This is then used instead the self signed certificate /var/web-gui/data/tools/httpd/mini_httpd.pem

Background
A self signed certificate is always unsecure as it allows man in the middle attacks between client and server unlike public cerificates that use a triangle relation between client, server and certification authority.
 
Last edited:

gea

Well-Known Member
Dec 31, 2010
3,141
1,184
113
DE
You should be able to use a public pem certificate as well.
You must only care that a public certificate is related to a domain or a hostname.domain while a private one can work with an ip.