Hi Granwille I once had this issue and could solve it by deleting the SSL records on the keystore DB: delete from keystore where domain_suffix="console.yourdomain.com"
After that you have to re-upload your certificate. Good luck & Regards! Liridon ________________________________ Von: Granwille Strauss Gesendet: Montag, 19. September 2022 22:54 Bis: users@cloudstack.apache.org Betreff: SSL Encryption for SSVM & Console Hi Guys I am using 4.17 CM and I am trying to secure SSVM & Console. I have a wildcard certificate, that should cover CM, SSVM & Console without any issues. In CM UI, I have uploaded my CRT, PKCS8 Key and for the domain suffix I have *.domain.com in place. In global config, I have set the following: - consoleproxy.url.domain: console.domain.com & I have tested *.domain.com - consoleproxy.sslEnabled: true - secstorage.ssl.cert.domain: ssvm.domain.com & I have tested *.domain.com - secstorage.encrypt.copy: true Regardless of the domain settings, my console agent fails to connect. SSVM works perfectly fine whether I use ssvm.domain.com or *.domain.com in global setting. I have destroyed console vm hoping for it to load certificate with no luck. Are there any suggestion on how I can fix this, please? -- Regards / Groete [https://www.adsigner.com/v1/s/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/logo/621b3fa39fb210001f975298/cd2904ba-304d-4a49-bf33-cbe9ac76d929_248x-.png]<https://www.namhost.com> Granwille Strauss // Senior Systems Admin e: granwi...@namhost.com<mailto:granwi...@namhost.com> m: +264 81 323 1260<tel:+264813231260> w: www.namhost.com<https://www.namhost.com/> [https://www.adsigner.com/v1/s/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/social_icon_01/621b3fa39fb210001f975298/9151954b-b298-41aa-89c8-1d68af075373_48x48.png]<https://www.facebook.com/namhost> [https://www.adsigner.com/v1/s/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/social_icon_02/621b3fa39fb210001f975298/85a9dc7c-7bd1-4958-85a9-e6a25baeb028_48x48.png] <https://twitter.com/namhost> [https://www.adsigner.com/v1/s/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/social_icon_03/621b3fa39fb210001f975298/c1c5386c-914c-43cf-9d37-5b4aa8e317ab_48x48.png] <https://www.instagram.com/namhostinternetservices/> [https://www.adsigner.com/v1/s/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/social_icon_04/621b3fa39fb210001f975298/3aaa7968-130e-48ec-821d-559a332cce47_48x48.png] <https://www.linkedin.com/company/namhos> [https://www.adsigner.com/v1/s/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/social_icon_05/621b3fa39fb210001f975298/3a8c09e6-588f-43a8-acfd-be4423fd3fb6_48x48.png] <https://www.youtube.com/channel/UCTd5v-kVPaic_dguGur15AA> [https://www.adsigner.com/v1/i/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/banner/940x300]<https://www.adsigner.com/v1/l/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/banner> Namhost Internet Services (Pty) Ltd, 24 Black Eagle Rd, Hermanus, 7210, RSA The content of this message is confidential. If you have received it by mistake, please inform us by email reply and then delete the message. It is forbidden to copy, forward, or in any way reveal the contents of this message to anyone without our explicit consent. The integrity and security of this email cannot be guaranteed over the Internet. Therefore, the sender will not be held liable for any damage caused by the message. For our full privacy policy and disclaimers, please go to https://www.namhost.com/privacy-policy [Powered by AdSigner]<https://www.adsigner.com/v1/c/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818>
