Difference between revisions of "Install CA Cert on Ubuntu"

From IVS Wiki
Jump to: navigation, search
(Created page with "Starting with version 5.5 of VALT, if using an internal CA instead of a public CA, the CA certified will need to be installed in Ubuntu. ''Note: At the time of the writing of...")
 
 
Line 1: Line 1:
Starting with version 5.5 of VALT, if using an internal CA instead of a public CA, the CA certified will need to be installed in Ubuntu.
+
<div class="floating_card">Starting with version 5.5 of VALT, if using an internal CA instead of a public CA, the CA certified will need to be installed in Ubuntu.</div>
  
 +
<div class="section">
 
''Note: At the time of the writing of this article the update, install, and ssl scripts have not yet been updated. The intent is to update these scripts to account for this issue, however many customers may not have provided the cert for their internal CA when SSL was initially set up on their VALT appliance. ''
 
''Note: At the time of the writing of this article the update, install, and ssl scripts have not yet been updated. The intent is to update these scripts to account for this issue, however many customers may not have provided the cert for their internal CA when SSL was initially set up on their VALT appliance. ''
  
Line 10: Line 11:
 
# Run the following command:
 
# Run the following command:
 
#: <code>sudo update-ca-certificates</code>
 
#: <code>sudo update-ca-certificates</code>
 +
</div>

Latest revision as of 07:49, 29 September 2022

Starting with version 5.5 of VALT, if using an internal CA instead of a public CA, the CA certified will need to be installed in Ubuntu.

Note: At the time of the writing of this article the update, install, and ssl scripts have not yet been updated. The intent is to update these scripts to account for this issue, however many customers may not have provided the cert for their internal CA when SSL was initially set up on their VALT appliance.

  1. If the CA cert is not already in PEM format, convert the certificate to PEM format.
    openssl x509 -inform der -in certificate.cer -out certificate.pem
    Note: This example is for converting a DER cert to PEM. If you cert is in a different format, this command will not work.
  2. Copy the ca certificate to /usr/local/share/ca-certificates/. The certificate must end in .crt
    sudo cp certificate.pem /usr/local/share/ca-certificates/certificate.crt
  3. Run the following command:
    sudo update-ca-certificates