Hi all, this is my first post here so I hope I get it right.
I got Home assistant running on QNAP NAS in a docker container. It uses the certificates generated by QTS (I manually copy them from /etc/stunnel every time it’s required). Everything works fine but now I’m trying to set up Smartthings integration and I found out the certificate is only trusted by some browsers.
I also tried running curl -X GET https://something.myqnapcloud.com:8123 and I got this:
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
I have almost the same configuration, except I downloaded the certificate and the key from Control Panel > Security > SSL Certificate & Private Key, therefore my files are .crt. Everything was working fine; I just had to update a copy of the files inside the config folder of HAss with the new ones after the old expired.
Since the last series of updates, either new HAss version or the QTS 5.0.0.1828, the HAss app on the iPad reports “The certificate for this server is invalid. You might be connecting to a server that is pretending to be “xyz. myqnalpcloud .com” which could put your confidential information at risk.” as soon as the app is launched. In the other hand, the connection to the web administration works fine (https ://xyz.myqnapcloud.com) and never reports issues regardless the browser.
Test with browsers iOS and Mac
Safari on iOS can connect without issues and shows the lock on the address bar. Safari on a Mac couldn’t
DuckDuckGo app says “The certificate for this server is invalid”
Chrome reports “NET::ERR_CERT_DATE_INVALID…This server could not prove that it is xyz.myqnapcloud.com; its security certificate is not valid at this time.”
Firefox “This Connection is Untrusted” “SEC_ERROR_EXPIRED_CERTIFICATE”
