CSR how to import created cert?

[nusko]

Hi guys.
I made csr. I successfully imported it on my CA (active directory). Now that I have a certificate I do not know how to import this certificate into a freenas server. In the edit option, I should copy the contents of the certificate. I do not know which certificate content...

https://ibb.co/iKUzAH

 

[dlavigne]

Were you able to figure this out?

 

[nusko]

Not exactly. I still do not understand the principle of importing a certificate. I do not know why this simple thing must be complicated?
Do you all use http and do not know the answer? Can anyone help me to import a certificate that is created through an active directory?

 

[Mirfster]

Have a looksy here: http://freenas.2trux.com/FreeNAS.pdf (start at page 74)

Personally, I just do this:

1. [System] - [CAs] - "Import CA"
2. Give it a name under "Name"
3. Copy/Paste Certificate info into "Certificate"
4. Copy/Paste Private Key info into "Private Key"
5. Set "Serial" to "1"

1. [System] - [Certificates] - "Import Certificate"
2. Give it a name under "Name"
3. Copy/Paste Certificate info into "Certificate"
4. Copy/Paste Private Key info into "Private Key"
5. I don't use a "Passphrase" so I leave them blank

1. [System] - [General]
2. Protocol = HTTPS
3. Certificate = Select the one you created from the drop down

BTW I use a purchased WildCard Cert and not self-created.

 

[danb35]

Can anyone help me to import a certificate that is created through an active directory?

Importing a cert is the same no matter where it's created, as long as you have separate PEM-encoded certificate and private key files. If your Active Directory server has created the cert in a different format (.pfx, .p12, etc.), you'll need to convert it. The manual covers the process to import a cert, which @Mirfster has outlined above. Alternatively, I have a script that will deploy a cert to FreeNAS, though it's really intended to be used with Let's Encrypt.

 

[nusko]

I managed to import requested cert. Now I can finally log in via https without any warnings.

 

[rich45]

this is very interesting and may help with my issue. according to the manual need to import certificate from domain controller but how do you just copy and paste between systems. domain controller to nass server.


thanks

using web portal from uninvention server to free-nas 11.1 u6

 

[danb35]

how do you just copy and paste between systems.

You log into the FreeNAS web UI from whatever machine has the cert, and paste it into the appropriate box.

 

[rich45]

this does not work so there must be some other issue any ideas would be appreciated

freenas 11.1
uninvention Debian stretch
able to ping between machines

how ever when ping name of nas machine it responds back with the 2nd nic the gui responds to .12 name responds back on .13 not sure if this is an issue.

 

[danb35]

this does not work so there must be some other issue any ideas would be appreciated

You can start by explaining exactly what you're doing, and what the result is--"does not work" is about the least useful possible problem report.

 

[rich45]

danb35

first thanks for answering. I had put all the info in a different forum. I was using a 3rd machine. when I did it the way you suggested it worked fine again I do appreciated you answering and helping me see my own error

rich