-
Notifications
You must be signed in to change notification settings - Fork 19
Certificate locations on UDM(P)
Alexander Wolf edited this page Jan 28, 2023
·
5 revisions
Seems like UI has the intention to provide the user the largest potential to adjust systems to their needs. I trust they are working on a thorough documentation when done with their solar panels or whatever comes next, on a best effort. In other words, one could also get the impression they want to make it as complicated as possible.
Where to find and put the cert and key files - files are here:
# to secure the core web services
UBIOS_CERT_PATH='/mnt/data/unifi-os/unifi-core/config'
Just for fun, UI does use a Java Keystore for that. So well, let's convert the standard certificate and get it imported into that.
# these two items are required for the captive portal only
CERT_IMPORT_CMD='java -jar /usr/lib/unifi/lib/ace.jar import_key_cert'
UNIFIOS_CERT_PATH='/data/unifi-core/config'
Copy the files, then restart
unifi-os restart
Some more hints on that specific keystore can be found here.
root@udm:~# ls $DATADIR/udapi-config/raddb/certs/
ca.key ca.pem index.txt.attr server-key.pem server.pem
No idea what this is used for. Will be overwritten / recreated during boot.
~# ls -larth $DATADIR/system/ssl/private/redirector
total 24K
drwxr-xr-x 3 root root 4.0K Jan 1 2000 ..
-rw-r--r-- 1 root root 1.8K Jan 15 17:28 server.crt
-rw------- 1 root root 1.6K Jan 15 17:29 server.key
drwxr-xr-x 2 root root 4.0K Jan 15 17:29 .
Status: Firmware 1.12.37 on UDM Pro, tested January 2023