Can you access via SSH?
yes I can
You can “reset” configuration to default certificate:
Do not know about the reverse proxy.
1 Like
Hi
unfortunately:
config: command not found
created new key and a self signed certificate, copied them into place, now the httpd service is able to start but the web gui still won’t load, the same error appears
as root user?
not, just sudoer, should I do it as root?
yes, as root… you cau use su - to switch to
did as root but I got the same result.
here is what I did as root:
openssl genrsa -out domain.key 2048
openssl req -key domain.key -new -out domain.csr
openssl x509 -signkey domain.key -in domain.csr -req -days 730 -out domain.crt
cp domain.crt /etc/pki/tls/certs/localhost.crt
cp domain.key /etc/pki/tls/private/localhost.key
service httpd restart
what about the config commands? you get command not found as root?
cockpit (port 9090) does not rely on httpd (IIRC). Old server manager (neth-gui, port 980 relies on apache but has configured it’s own service httpd-admin)
there are a couple of cockpit services (if memory serves me well):
systemctl status -l cockpit.service cockpit.socket[root@ad gyaradm]# config
bash: config: command not found
[root@ad gyaradm]# systemctl status -l cockpit.service cockpit.socket
part of the reply:
● cockpit.socket - Cockpit Web Service Socket
Loaded: loaded (/usr/lib/systemd/system/cockpit.socket; enabled; vendor preset: disabled)
Active: active (listening) since Fri 2022-09-16 19:58:23 CEST; 1min 59s ago
Docs: man:cockpit-ws(8)
Listen: [::]:9090 (Stream)
Process: 2076 ExecStartPost=/bin/ln -snf active.motd /run/cockpit/motd (code=exited, status=0/SUCCESS)
Process: 2067 ExecStartPost=/usr/share/cockpit/motd/update-motd localhost (code=exited, status=0/SUCCESS)
Sep 16 19:58:23 ad.gyar.hu systemd[1]: Starting Cockpit Web Service Socket.
Sep 16 19:58:23 ad.gyar.hu systemd[1]: Listening on Cockpit Web Service Socket.
/usr/sbin/e-smith/config
Then the Path variable might be missing something.
Edit:
[root@ad gyaradm]# /usr/sbin/e-smith/config show pki
pki=configuration
CertificateDuration=3650
ChainFile=
CommonName=
CountryCode=
CrtFile=/etc/pki/tls/certs/wildcard.crt
EmailAddress=
KeyFile=/etc/pki/tls/private/wildcard.key
LetsEncryptChallenge=http
LetsEncryptDomains=internal.gyar.hu
LetsEncryptMail=andras@gyar.hu
LetsEncryptShortChain=enabled
Locality=
Organization=
OrganizationalUnitName=
State=
SubjectAltName=
[root@ad gyaradm]#
/usr/sbin/e-smith/config show pki #just to know current settings
/usr/sbin/e-smith/config setprop pki CrtFile ''
/usr/sbin/e-smith/config setprop pki KeyFile ''
/usr/sbin/e-smith/config setprop pki ChainFile ''
/usr/sbin/e-smith/signal-event certificate-update
2 Likes
PATH variable (according to above post)
after these commands:
[root@ad gyaradm]# /usr/sbin/e-smith/config show pki
pki=configuration
CertificateDuration=3650
ChainFile=
CommonName=
CountryCode=
CrtFile=
EmailAddress=
KeyFile=
LetsEncryptChallenge=http
LetsEncryptDomains=internal.gyar.hu
LetsEncryptMail=andras@gyar.hu
LetsEncryptShortChain=enabled
Locality=
Organization=
OrganizationalUnitName=
State=
SubjectAltName=
and the webgui is working!!!
1 Like
thank you very much, you were a great help
many thanks!!!
Not at all.
Remember to check and fix the PATH var.
I just tried with su - instead of su and then the path is ok
A post was split to a new topic: Set reverse proxy to use SSL cert of the server where the request is forwarded to