Re: RE: Configuring HTTPS for UI

2020-08-14 Thread Andrija Panic
rija Panic >> Sent: Friday, August 14, 2020 7:04 AM >> To: users >> Cc: Rafael del Valle >> Subject: Re: RE: Configuring HTTPS for UI >> >> Mike are you trying on 4.14 or older build? >> I believe I've just seen an issue on 4.14. >> >>

Re: RE: Configuring HTTPS for UI

2020-08-14 Thread Andrija Panic
oads. > > Mike > > -Original Message- > From: Andrija Panic > Sent: Friday, August 14, 2020 7:04 AM > To: users > Cc: Rafael del Valle > Subject: Re: RE: Configuring HTTPS for UI > > Mike are you trying on 4.14 or older build? > I believe I've just seen an

RE: RE: Configuring HTTPS for UI

2020-08-14 Thread Corey, Mike
bject: Re: RE: Configuring HTTPS for UI Mike are you trying on 4.14 or older build? I believe I've just seen an issue on 4.14. Best, On Mon, 10 Aug 2020 at 17:12, Corey, Mike wrote: > Thanks for the feedback Rafael, > > When I use a certificate created with the FQDN as the CN, and wi

Re: RE: Configuring HTTPS for UI

2020-08-14 Thread Andrija Panic
ctAlternateName fields should be DNS: , DNS: ??? > > Mike > > > > -Original Message- > From: Rafael del Valle > Sent: Friday, August 7, 2020 4:17 PM > To: users@cloudstack.apache.org > Subject: Re: RE: Configuring HTTPS for UI > > Hi Mike, > >

RE: RE: Configuring HTTPS for UI

2020-08-10 Thread Corey, Mike
red, > the type of cert I'm getting from my corporate CA, or can jetty(java, > tomcat?) only support the single commonname cert? > > Thanks! > > Mike > > -Original Message- > From: Corey, Mike " target="_blank"> > Sent: Thursd

Re: RE: Configuring HTTPS for UI

2020-08-08 Thread Rafael del Valle
the type of cert I'm getting from my corporate CA, or can jetty(java, > tomcat?) only support the single commonname cert? > > Thanks! > > Mike > > -Original Message- > From: Corey, Mike " target="_blank"> > Sent: Thursday, August 6, 2020 3

RE: Configuring HTTPS for UI

2020-08-07 Thread Corey, Mike
t I'm getting from my corporate CA, or can jetty(java, tomcat?) only support the single commonname cert? Thanks! Mike -Original Message- From: Corey, Mike Sent: Thursday, August 6, 2020 3:07 PM To: users@cloudstack.apache.org Subject: [CAUTION] RE: Configuring HTTPS for UI Than

RE: Configuring HTTPS for UI

2020-08-06 Thread Corey, Mike
needed to change it to *. for the error to go away and the UI to start. -Original Message- From: Andrija Panic Sent: Wednesday, August 5, 2020 11:29 AM To: users Subject: Re: Configuring HTTPS for UI Hi Mike, not sure what to docs say (haven't read that part recently), but the

Re: Configuring HTTPS for UI

2020-08-05 Thread nux
Hi, I've found it much easier to just put Apache httpd in front and do SSL there then proxy to Jetty, ie with the following code in the vhost config: AddDefaultCharset Off ProxyPass /client http://localhost:8080/client ProxyPassReverse /client http://localhost:8080/client HTH On 2020-08-0

Re: Configuring HTTPS for UI

2020-08-05 Thread Andrija Panic
pache/cloudstack/issues/4199 But, maybe I just > haven't completed the process if I have to do something to Jetty first. > > -Original Message- > From: Andrija Panic > Sent: Wednesday, August 5, 2020 5:14 AM > To: users > Subject: Re: Configuring HTTPS for UI &g

RE: Configuring HTTPS for UI

2020-08-05 Thread Corey, Mike
s Subject: Re: Configuring HTTPS for UI Hi Mike, in production, you might want to do the SSL offloading on the load balancer, but yes, you can also setup SSL on the Jetty as well - please see the article https://www.shapeblue.com/securing-cloudstack-4-11-with-https-tls/ (skip the first part which

Re: Configuring HTTPS for UI

2020-08-05 Thread Andrija Panic
Hi Mike, in production, you might want to do the SSL offloading on the load balancer, but yes, you can also setup SSL on the Jetty as well - please see the article https://www.shapeblue.com/securing-cloudstack-4-11-with-https-tls/ (skip the first part which describes securing system VMs with SSL)