SSL with self signed certificate

larrybg · November 12, 2018, 6:27pm

What is the procedure to configure Zammad with self-signed SSL certificate? All we could find is the procedure with Let’s Encrypt, but Let’s Encrypt doesn’t work with internal domain names. We have Zammad system installed in our local lab environment and it uses “mydomain.iss.local” names.

Used Zammad version: 2.7.x
Used Zammad installation source: yum
Operating system: Centos 7
Browser + version: all

Expected behavior:

Properly working SSL

Actual behavior:

My attempt to install self signed certificate ended with error “Cannot verify certificate”

Jester · November 13, 2018, 7:28am

SSL certificate issues are beyond the Zammad scope.

You can install Zammad and configure nginx/apache to use any certificate you want, just like for any other service.

J44LKS · November 15, 2018, 11:12am

Hi Larrybg

Take a look at our cheat sheet we made for our Zammad install. We use it with LetsEncrypt. At the bottom of the sheet is a script you can create to automatically renew the certificate. You’ll need to create the actual cronjob yourself with timings appropriate to you though.

larrybg · November 15, 2018, 3:44pm

I was able to setup Nginx with self-signed certificate using this instructions https://www.digitalocean.com/community/tutorials/how-to-create-a-self-signed-ssl-certificate-for-nginx-on-centos-7, and this conf file: https://github.com/zammad/zammad/blob/develop/contrib/nginx/zammad_ssl.conf

Thanks!

system · March 15, 2019, 3:44pm

This topic was automatically closed 120 days after the last reply. New replies are no longer allowed.