Merul,
Thanks for your assistance and config sample. The SSL certs now work on Firefox, Safari and IE. Had to load some <shellcmd> lines in the XML to kill all lighttpd processes and restart with the correct ssl conf file...since any reboot of pfSense overwrites all the conf files. Thanks again. -Jon From: Merul Patel [mailto:merul.pa...@gmail.com] Sent: Friday, January 22, 2010 1:29 AM To: support@pfsense.com Subject: Re: [pfSense Support] Certificate Errors (Safari and Internet Explorer) using GoDaddy Wildcard SSL Certificates for Captive Portal SSL Login Page On 21 Jan 2010, at 22:14, Tancinco, Jon wrote: Thanks for your help Lyle. I've seen this solution... SSLEngine On SSLCertificateFile /etc/httpd/ssl/*.serverdensity.com.crt SSLCertificateKeyFile /etc/httpd/ssl/*.serverdensity.com.key SSLCertificateChainFile /etc/httpd/ssl/gd_bundle.crt But since pfSense uses lighttpd, I don't know how to add this line. And it get's overwritten by the xml config file during reboot. -Jon Jon, I use Lighttpd for other production sites and also use GoDaddy for their SSL certs. Here's the relevant section from my lighttpd config $SERVER["socket"] == "XXX.XXX.XXX.XXX:443" { ssl.engine = "enable", ssl.pemfile = "/etc/apache2/ssl/DOMAIN.ucc.pem" ssl.ca-file = "/etc/apache2/ssl/gd_intermediate_bundle.crt" } BR Merul
