openmediavault-letsencrypt

  • I looked at the codes, and it seemed to be the similar solution: convert 'privkey.pem > omv--aabb.key; "fullchain.pem' > 'omv-abb.crt'.
    We still missing some piece of the puzzle to key it import into OMV GUI.

    Here is a script I use to generate some other format cert for other os.


    Not sure what you are missing?

    If you make it idiot proof, somebody will build a better idiot.

    Edited once, last by donh: fixed deleted code ().

  • Is it do the 'cat' command and import the result into OMV cert menu ?

    The cat command puts the text in the cert files in a bash variable. From there, it can update an existing cert in the omv database.

    omv 5.5.17-2 usul | 64 bit | 5.4 proxmox kernel | omvextrasorg 5.4.2
    omv-extras.org plugins source code and issue tracker - github


    Please read this before posting a question.
    Please don't PM for support... Too many PMs!

  • Somehow the script can’t read this last part of line: openssl pkcs12 -inkey /etc/letsencrypt/live/example.com/privkey.pem -in /etc/letsencrypt/live/example.com/cert.pem -export -out /etc/letsencrypt/live/example.com


    fYI: I’ve changed it to my actual path, but still failed.

  • That line got cut off somehow, ignore it. It was to create a /pfx cert.


    If you have the .pem files you just need
    cat /etc/letsencrypt/live/example.com/privkey.pem /etc/letsencrypt/live/example.com/cert.pem > /etc/letsencrypt/live/example.com/untangleapache.pem.

  • So, I got the MyCert.pem generated in that directory.
    But still don't see it in OMV web gui.
    I end up cat those two files and copy & paste them in OMV SSL manually for it to work.


    Edit: I found the easier way is to cp & rename those files with the openmediavault-your-key.cert, and openmediavault-your-key.key, and they should work.

  • Good evening. excuse my English but I am French and therefore obliged to use google translator . I try to install Let's encrypt in OMV 4.


    My domain is : xxxxx.hopto.org
    i don't have subdomain
    below domain, I am asked to fill web root : i put : /var/www/openmediavault/ ( i don't know if that's i have to do)
    i fill out my email
    below email, i m asked to fill certificat's name : do i put any name or it's specific (i don't know what i have to put). In the meantime, I just put the folder path I created in my shared folder
    Ensure Enable is checked : i do that
    and save the configuration.


    But, when i generate certificate, it doesn't this appear in the tab of the cerificats SSL. i don't have any "error" when i generate.
    how to view or where i m wrong?


    thanks for your help and sorry for my english.



    Please try to use simple words or easy words.

  • This solution is for OMV5.
    I think you using OMV4, it would be easier and little difference.


    For OMV4, the web root path was my Nextcloud directory.
    E.g. /srv/577889abccss/www/Nextcloud
    domains: cloud.mydomain.com,media.mydomain.com,test.mydomain.com


    You would need a either your domain or a free ddns to use it with LE.


    The 1st page give you a lot of info.

  • You're wright. I use omv 4, I got the MyCert.pem generated in : /etc/letsencrypt/live/xxxxx.hopto.org
    But still don't see it in OMV web gui.


    I need certificat only for this domain : xxxx.hopto.org (it's à free ddns)
    For moment, I don't usé Nextcloud or any else

  • Simple and sure backup and restore: In a Scheduled Job: rsync -av --delete /srv/dev-disk-by-label-SOURCE/ /srv/dev-disk-by-label-DESTINATION/ (HT: Getting Started with OMV5)
    OMV Version: Ver. 5 (current) - Hardware: NanoPi M4, Nextcloud, Plex, Airsonic, Booksonic, Calibre, & Heimdall - Acer Aspire T180, backup - Odroid XU4, Pi-Hole (DietPi) - Testing/Playing: hc2, xu4, Pi 3B+, Odroid H2, and HP dx2400, Debian 10 XFCE.

  • I tested my method again last night but it didn’t work.
    The LE cert.pem and privkey.pem are diff’t compare to OMV.
    By copy & rename those files to use with OMV .cert and .key will not work.


    I had to do it by hands and import those keys into OMV SSL menu.

  • Once you import it the first time by hand you can find that file and then update that one by copy method. It wont show the correct expire date in the gui. But if you check the cert in a browser it will be the new cert.

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!