OMV SSL certificate for Syncthing

    • OMV 4.x

    This site uses cookies. By continuing to browse this site, you are agreeing to our Cookie Policy.

    • OMV SSL certificate for Syncthing

      I created a certificate and set OMV up to force HTTPS connection. For the webgui and all services I added myself, this works. But Syncthing created or brought its own certificate.

      How can I setup Syncthing to also use the OMV certificate?
    • I haven’t looked at syncthing using ssl for the webui. The plugin doesn’t have that configuration.
      You can try modifying the internal syncthing configuration to add the cert.

      openmediavault.readthedocs.io/…general/certificates.html
      New wiki
      chat support at #openmediavault@freenode IRC | Spanish & English | GMT+10
      telegram.me/openmediavault broadcast channel
      openmediavault discord server
    • OK, it works by replacing .config/syncthing/https-cert.pem and .config/syncthing/https-key.pem and chown and chmod accordingly. But nevertheless one has to add another certificate exception in Firefox. This is because the exception is bound to a specific port and the webui and Syncthing ports differ. So it's no real advantage to use one certificate.
    • "But nevertheless one has to add another certificate exception in Firefox. This is because the exception is bound to a specific port and the webui and Syncthing ports differ. So it's no real advantage to use one certificate."

      Sorry, but this is utter nonsense. TLS certs don't care one bit about the port they're used through, they care about the IPv4/6 addresses or DNS entries they're trusted for. If you connect through LAN, and it expects a WAN IP, you'll get a warning from Firefox. You can solve that problem by running dnsmasq somewhere on your LAN, where you let the domain name point to the LAN IP. If you resolve using that local dnsmasq, firefox doesn't require an exception.