From: duluxoz <duluxoz@gmail.com>
To: Proxmox VE user list <pve-user@lists.proxmox.com>
Subject: [PVE-User] ACME Cert Order Not Working
Date: Wed, 18 Sep 2024 16:58:54 +1000 [thread overview]
Message-ID: <287430d0-ec83-41ec-b83b-5cec6eff8893@gmail.com> (raw)
Hi All,
I'm trying to set up a private PKI (Step-CA: stepca.example.com) to
provide my PVE (Proxmox v18.2.4) with certificates.
I have the Step-CA server set up and working (I can receive/renew certs
via ACME.sh from a different server to the stepca.example.com).
I have run the command: `pvenode acme account register my_acme
root@example.com --directory
https://stepca.example.com/acme/my_acme/directory` - this returned:
~~~
Attempting to fetch Terms of Service from
'https://stepca.example.com/acme/my_acme/directory'..
No Terms of Service found, proceeding.
Attempting to register account with
'https://stepca.example.com/acme/my_acme/directory'..
Generating ACME account key..
Registering ACME account..
Registration successful, account URL:
'https://stepca.example.com/acme/my_acme/account/PLeTGsgGbogPgnURjpYMuieKc1Yj2cFQ'
Task OK
~~~
Running the command `pvenode acme account info my_acme` returns all the
correct information (as above) - the most important part is `status: valid`.
However, when I then run the command `pvenode acme cert order` I
receive: `Can't use an undefined value as a HASH reference at
/usr/share/perl5/PVE/API2/ACME.pm line 196.`
Also, when I run the command `pvenode acme cert renew` I (as expected)
receive: `No current (custom) certificate found, please order a new
certificate!`
Finally, when I run the command `pvenode cert info` I receive info
*only* about the `pve-root-ca.pem` and `pve-ssl.pem` certificates
(again, as expected).
So, if someone could be kind enough to let me know where I've gone
wrong, I'd appreciate it.
Cheers
Dulux-Oz
PS: Also, the (on-line) Proxmox doco says (in section 3.12.4. Trusted
certificates via Let’s Encrypt (ACME) ) that "You can register and
deactivate ACME accounts over the web interface Datacenter -> ACME...",
but I can't find that in the Web Interface - has something changed in
recent versions of ProxMox?
_______________________________________________
pve-user mailing list
pve-user@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user
reply other threads:[~2024-09-18 6:59 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=287430d0-ec83-41ec-b83b-5cec6eff8893@gmail.com \
--to=duluxoz@gmail.com \
--cc=matthew@peregrineit.net \
--cc=pve-user@lists.proxmox.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.