First Q here ,hope i’m doing it right .
I’m running HA 0.95.4 on QNAP Docker ,
After configuring the ports (443–>8123)
I install LetsEncrpyt via QNAP QTS and generate 3 files
SSLcertificate.crt SSLIntermediateCertificate.crt SSLprivatekey.key
Long story short (hourssss)
I eventually rename them To fullchain.pem and privkey.pem and place them under config + permission set to 777.
The parameters inside the configuration.yaml:
http:
ssl_certificate: /config/certificate.pem
ssl_key: /config/privkey.pem
base_url: https://XXXXX.myqnapcloud.com:8123
I manage to connect from outside using
http://MyDomainName.myqnapcloud.com:443
But i’m getting warnning (Chrome) that the site is not secured.
(Same from mobile).
and also on address bar it look as:
So i’m not sure if this work as should,
from HA log :
*Log Details (ERROR)*
*Mon Jul 15 2019 21:09:03 GMT+0300 (Israel Daylight Time)*
*Error doing job: SSL handshake failed*
*Traceback (most recent call last):*
* File "uvloop/sslproto.pyx", line 500, in uvloop.loop.SSLProtocol._on_handshake_complete*
* File "uvloop/sslproto.pyx", line 484, in uvloop.loop.SSLProtocol._do_handshake*
* File "/usr/local/lib/python3.7/ssl.py", line 763, in do_handshake*
* self._sslobj.do_handshake()*
*ssl.SSLError: [SSL: SSLV3_ALERT_CERTIFICATE_UNKNOWN] sslv3 alert certificate unknown (_ssl.c:1056)*
Is that mean HA not working properly with the SSL(not secured)?
Any suggestions for fixing it?
Thanks all!