Re: [PacketFence-users] Error Notifications even after SSL certifiate update

[Gibbs, Christopher via PacketFence-users]

I did restart all services. Still getting the notifications.

Checking the cert with your command yields this:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:c9:2f:15:11:36:a3:50:7f:14:8a:6d:1e:2c:72:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte RSA CA 2018
        Validity
            Not Before: May 25 00:00:00 2021 GMT
            Not After : Jun 25 23:59:59 2022 GMT
        Subject: C=XX, ST=XXXXXXXX, L=XXXXXXXXXXXXX, 
O=XXXXXXXXXXXXXXXXXXXXXXXX, CN=XXX.campbellsville.edu
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
[snip]


From: Zammit, Ludovic via PacketFence-users 
<packetfence-users@lists.sourceforge.net>
Sent: Thursday, June 3, 2021 10:51 AM
To: packetfence-users@lists.sourceforge.net
Cc: Zammit, Ludovic <luza...@akamai.com>
Subject: Re: [PacketFence-users] Error Notifications even after SSL certifiate 
update

Hello there.

You will need to restart all services because they load the certificate when 
they start.

You can check the certificate with the command:

openssl x509 -text -in /usr/local/pf/conf/ssl/server.crt | less

Thanks,

Ludovic Zammit
Product Support Engineer Principal
[https://www.akamai.com/us/en/multimedia/images/custom/2019/logo-no-tag-93x45.png]
Cell: +1.613.670.8432
Akamai Technologies - Inverse
145 Broadway
Cambridge, MA 02142
Connect with Us:
[https://www.akamai.com/us/en/multimedia/images/custom/community.jpg]<https://community.akamai.com>[https://www.akamai.com/us/en/multimedia/images/custom/rss.png]<http://blogs.akamai.com>[https://www.akamai.com/us/en/multimedia/images/custom/twitter.png]<https://twitter.com/akamai>[https://www.akamai.com/us/en/multimedia/images/custom/fb.png]<http://www.facebook.com/AkamaiTechnologies>[https://www.akamai.com/us/en/multimedia/images/custom/in.png]<http://www.linkedin.com/company/akamai-technologies>[https://www.akamai.com/us/en/multimedia/images/custom/youtube.png]<http://www.youtube.com/user/akamaitechnologies?feature=results_main>


On Jun 2, 2021, at 2:21 PM, Gibbs, Christopher via PacketFence-users 
<packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>>
 wrote:

Our packetfence is sending us emails like this:

Subject: PF Alert: SSL certificate expiration (06/02/21 13:25:12)

SSL certificate '/usr/local/pf/raddb/certs/server.crt' is about to expire soon 
(less than '30D'). This should be taken care.
And

Subject: PF Alert: SSL certificate expiration (06/02/21 13:25:12)

SSL certificate '/usr/local/pf/conf/ssl/server.pem' is about to expire soon 
(less than '30D'). This should be taken care.

Even though we’ve updated both of those certificate files, and restarted all 
the services, we continue to get these notifications.

What do I need to look at next?

Chris Gibbs
Information Technology Infrastructure Manager
Campbellsville University

_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net<mailto:PacketFence-users@lists.sourceforge.net>
https://urldefense.com/v3/__https://lists.sourceforge.net/lists/listinfo/packetfence-users__;!!GjvTz_vk!FnVEVLVLi8aiI4lZ5hOv3l16a4cExiA_49I1MZdTuXVhGFxB7QO_NREW2SEJkT0J$<https://urldefense.com/v3/__https:/lists.sourceforge.net/lists/listinfo/packetfence-users__;!!GjvTz_vk!FnVEVLVLi8aiI4lZ5hOv3l16a4cExiA_49I1MZdTuXVhGFxB7QO_NREW2SEJkT0J$>



_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/packetfence-users