Questions tagged [ssl]

Question 1

I'm facing a truly bizarre Docker TLS issue that has exhausted all standard debugging methods. I have two Rocky 9 systems, and a Docker pull operation with a self-signed registry works on one but ...

Question 2

I imported it into the Exchange server. But there is a warning for the certificate as follows. Issuer of this certificate could not be found Issued by : RapidSSL TLS RSA CA G1 Issuer: CN = RapidSSL ...

Question 3

First and foremost, thank you for taking the time to read my question. I'm encountering a net::ERR_CONNECTION_TIMED_OUT error with a Janus SSL WebSocket connection and would greatly appreciate any ...

Question 4

I deployed Keycloak 26.4.0 using Docker on an AWS EC2 Ubuntu instance. When I try to access it via HTTP, I get this error: We are sorry, HTTPS is required I wanted to make it accessible securely via ...

Question 5

I need to secure MongoDB traffic with TLS on a self hosted cluster. Im not completely new to the topic, but still haven't created certificates manually by my own yet. The MongoDB Cluster contains one ...

Question 6

I'm trying to add a certificate to cups so when we do printer admin we don't have to agree that we're using an insecure site. I have the certificate, installed in the correct place. But when I go to ...

Question 7

I’m running a Spring Boot app on a single AWS EC2 instance (Debian). A subdomain api.example.com points to the instance’s Elastic IP. I want to serve the app over HTTPS without an AWS load balancer. ...

Question 8

I'm trying to deploy Prestashop e-commerce platform in either v8 or v9 (I tried both) on my on-site hardware. The architecture looks like this: PUBLIC INTERNET -> NGINX PROXY MANAGER -> TRAEFIK ...

Question 9

I am trying to set up webserver (HAProxy) in front of puppetmaster (v8+) Got to the point of tinkering with custom headers and ran into a problem. Puppet Docs say: X-Client-Cert Optional. Should ...

Question 10

I was trying to install ruby-2.3.8 with rvm and got this error: rvm install ruby-2.3.8 \ Searching for binary rubies, this might take some time.\ No binary rubies available for: ubuntu/24.04/x86_64/...

Question 11

We have an ASP .NET website on IIS 10 on Windows Server 2016. An SSL test reported that the ECDH public parameters are being re-used, which present a security risk. We found one methods is a registry ...

Question 12

I spun up a Linux server on a Digital Ocean droplet, and successfully installed LAMP. The site works well, but not for HTTPS, which responds with this error: NET::ERR_CERT_AUTHORITY_INVALID. Clicking ...

Question 13

Where this question can be asked May be server fault? I’m running a nopCommerce ASP.NET Core application using Docker containers on Linux. Setup: nopCommercecontainer (ASP.NET Core app, exposed on ...

Question 14

I'm working on integrating Zscaler LSS (Log Streaming Service) with a custom log receiver. The docs say: It is possible to use mutual TLS encryption between the log receiver and the App Connector… ...

Question 15

I have setup my website infrastructure on Digital Ocean, below are some details of infra HTTPS traffic from Internet going to Load Balancer Kubernetes cluster with 2 nodes, running application pods ...

Question 16

I’m troubleshooting an issue with Microsoft Edge where certain HTTPS requests fail with the error: ERR_HTTP2_INADEQUATE_TRANSPORT_SECURITY After some investigation, I noticed that the issue only ...

Question 17

Ahoy all, I am currently running a Harvester machine I would like to connect to rancher's Virtualization Management services. I followed the instructions here: https://docs.harvesterhci.io/v1.2/...

Question 18

I have a Centos 7 server that I'm having trouble clearing the smtp warning for outbound mail. I get: Untrusted TLS connection established to... [any domain] I am using letsencrypt. I have searched ...

Question 19

Testing my SSL certificate alias name with double quotes (") as my first character, like "abcd" but connection failed with below errors, 05-15 18:55:03.744 13646 13646 D wpa_supplicant:...

Question 20

I'm currently setting up Cyrus IMAPd on my server in conjunction with certificates from Let's Encrypt to enable imaps, however, while doing s I have run into a problem: Attempting to load the ...

Question 21

I currently live in Russia, where internet censorship is increasingly enforced using Deep Packet Inspection (DPI). To bypass this, I’m building a personal VPN setup using V2Ray with the VLESS + ...

Question 22

We're running an Ubuntu VM on Azure and a pen test has said that the CBC ciphers are now obsolete and should not be used. I've updated my nginx config but the SSL labs test is claiming that they are ...

Question 23

When I created a web site project in Visual Studio and ran it, it automatically installed a self signed certificate and I connect to it using https://localhost:44375 However, I need to use the IP now, ...

Question 24

So I have a very simple container that uses the official httpd image and I am trying to rout 443 from a different port aka (-p 8443:443) so I can use this container to host other little web apps. I ...

Question 25

I'm setting up a web site on Almalinux. When the certificates are located in /etc/pki/ca-trust the site works. When the certificates are in other locations with different permissions it does not work. ...

Question 26

In my k8s cluster, I have the official k8s ingress-nginx installed in these commands: helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx helm upgrade --install ingress-nginx ...

Question 27

I'm hosting a static site on AWS S3 and using Cloudflare as a proxy to point my custom domain to the S3 bucket endpoint. My goal is for https://mydomain.tld to serve my site with SSL. Below are two ...

Question 28

Have tried every combination of settings I know of, but can't get past this. This used to work, but the Android client (OpenVPN v2.7) was updated and may have broken the settings. Server log: ...

Question 29

I have a problem with configuring Cloudflare SSL using Nginx on my OVH Debian VPS. I receive Error 502 when I open up the website. I want to self-host a Next.js app, just a single app, no database, no ...

Question 30

I upgraded my PuppetDB to 7.20 and now my Puppetserver fails to connect. Puppet agents fail with this error: Error: Could not retrieve catalog from remote server: Error 500 on SERVER: Server Error: ...

Question 31

I seen that apache can have multiple dynamic virtual hosts, each on it's own folder using Dynamically Configured Mass Virtual Hosting Without defining separate VirtualHost for each individual domain. ...

Question 32

We have an LDAP instance with an SSL certificate for LDAPS traffic, issued by our CA. We have two types of accounts (standard, privileged) and for each of course separate user profile. The standard ...

Question 33

Everyone! Introduce: I Have some devices, which work only with TLS 1.1 version. New version MS Exchange doesn't include it and I'm searching a solution. I found information that Nginx can accept ...

Question 34

hello I have a website with SSL certificate called englishsociety.net if you open it on tab you can find the lock is working but I am facing an issue with different port let's say this port for ...

Question 35

I have a docker-compose with severall apps, and traefik to do the routing and handle SSL/TSL certificates. I changed DNS supplier from Google to OVH, and then it didn't work. I thought I just had to ...

Question 36

I have an Octoprint server for my organization and access is restricted to smart card client certificates. This works fine for accessing the web interface in a browser, and the "physical printer&...

Question 37

Full disclosure, my experience with AWS is fairly limited. I have an Elastic Load Balancer (Application Load Balancer) set up for AWS. I have wracked my brain on this, when I go to my site (buzzauth....

Question 38

I was checking my SSL request logs on Apache 2.4 and found entries like the following: [26/Mar/2025:18:06:40 -0400] 106.75.164.40 TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 "{\"method\":\"...

Question 39

I have a working website. I want to do some tests with client certificate. When I go to IIS / SSL Settings in IIS Manager, then set Client certificates: Accept, strangely, the website does not prompt ...

Question 40

I am working on a project involving Microstack (OpenStack) where I am testing it on Oracle VM. I successfully created an instance, but I am encountering an issue: the instance prompts me for a ...

Question 41

I have FreeRadius server on Ubuntu, UniFi gateway as client and Windows PC as endpoint. I generated all the certificates and added them on machine according to this guide: https://cubicspot.blogspot....

Question 42

After updating the certificate on a microk8s cluster, the following error occurred: SSL_ERROR_UNRECOGNIZED_NAME_ALERT Is Let's Encrypt not working? Previously the domain could be accessed but now it ...

Question 43

In order to troubleshoot miscommunication between Windows PCs and FreeRadius 3.2.7.1, here for full story , i'm using eapol_test cli to validate EAP-TLS against FreeRadius. Used certificates in my ...

Question 44

Not sure when this has started happening, as it's an intermittent issue and it seems it has only recently started getting to the point where exim is notifying me of email being delayed over 24 hours. ...

Question 45

Our "service" has just switched to Centos 9 from Centos 8, where by default, on Centos 9, it is of python 3.9.21, and openssl of 3.2.1 version. Once I have the service started and to try ...

Question 46

I have an Internet facing Apache HTTPS server current.example.com. I want to rename the web server to nextname.example.com. I also need current.example.com to continue working during the transition. ...

Question 47

I have a virtual host that redirects non-www to www over SSL: <VirtualHost *:443> ServerName example.com Redirect / https://www.example.com/ # Do I need to include SSL configuration here? &...

Question 48

I can't download anything from HTTPS in a Java application in my new Debian server, while it works fine on the old server. They are both running bullseye with Java version openjdk 17.0.14 2025-01-21 ...

Question 49

I have a customer that owns domain foo.com. I am hosting their website at a different location, bar.com. The customer wants DNS for www.foo.com, and potentially foo.com, to resolve to the site at bar....

Question 50

I have Windows 11 configured in the registry to use only TLS 1.3, and a Windows Server 2022 that is also configured to use only TLS 1.3. Connecting from Windows 11 to Windows Server 2022 using RDP ...