• Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login
  • Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login

SSL Certificate is only valid for IP address, not hostname

Scheduled Pinned Locked Moved Solved
FOG Problems
3
5
1.4k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A
    apathetic_admin
    last edited by apathetic_admin Feb 2, 2016, 7:39 AM Feb 1, 2016, 10:31 PM

    FOG 6152 via git, the SSL certificate is only valid for the IP address of the server, and not the hostname. I’m guessing it’s something in .fogsettings, because when I do an upgrade for a new version it always overwrites my config file in /etc/apache2/sites-enabled with ServerName [ip address] and I will add ServerAlias [hostname] and restart Apache. I found a command (./installfog.sh --recreate-CA --recreate-keys) that I believe would take care of my issue IF I could get the correct hostname configured, assuming in .fogsettings.

    .fogsettings below, I don’t see a hostname field there, so I’m not sure where that’s coming from.

    Start of FOG Settings

        ## Created by the FOG Installer
    ## Version: 6134
    ## Install time: Thu 28 Jan 2016 08:51:19 PM EST

    ipaddress='12.34.56.78'
    interface='bond0'
    submask='255.255.255.0'
    routeraddress='#        option routers      x.x.x.x;'
    plainrouter=''
    dnsaddress='    option domain-name-servers      12.34.57.79;'
    dnsbootimage='12.34.58.97'
    password='hunter2'
    osid='2'
    osname='Debian'
    dodhcp='N'
    bldhcp='0'
    blexports='1'
    installtype='N'
    snmysqluser=''
    snmysqlpass=''
    snmysqlhost=''
    installlang='0'
    donate='1'
    storageLocation='/images'
    fogupdateloaded=1
    storageftpuser='fog'
    storageftppass='hunter2'
    docroot='/var/www/'
    webroot='fog/'
    caCreated='yes'
    startrange=''
    endrange=''
    bootfilename=''
    packages='apache2 php5 php5-json php5-gd php5-cli php5-curl mysql-server mysql-client tftpd-hpa tftp-hpa $
    noTftpBuild=''
    notpxedefaultfile=''
    ## End of FOG Settings

    Version: 6152

    Edit: Server does know it’s hostname, both cat /etc/hostname and the hostname command return “fog” which is the correct name on the network.

    Solution: host name can be put in the ipaddress field in .fogsettings

    W 1 Reply Last reply Feb 2, 2016, 1:56 AM Reply Quote 0
    • T
      Tom Elliott
      last edited by Feb 1, 2016, 11:26 PM

      Edit the fogsettings file ipaddress variable to be the hostname your system has.

      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG! Get in contact with me (chat bubble in the top right corner) if you want to join in.

      Web GUI issue? Please check apache error (debian/ubuntu: /var/log/apache2/error.log, centos/fedora/rhel: /var/log/httpd/error_log) and php-fpm log (/var/log/php*-fpm.log)

      Please support FOG if you like it: https://wiki.fogproject.org/wiki/index.php/Support_FOG

      A 1 Reply Last reply Feb 2, 2016, 1:52 AM Reply Quote 1
      • A
        apathetic_admin @Tom Elliott
        last edited by Feb 2, 2016, 1:52 AM

        @Tom-Elliott Thanks as always. You ever end up in Bloomington, IN I owe you a beer or twelve.

        1 Reply Last reply Reply Quote 1
        • W
          Wayne Workman @apathetic_admin
          last edited by Feb 2, 2016, 1:56 AM

          @apathetic_admin said:

          found a command (./installfog.sh --recreate-CA --recreate-keys) that I believe would take care of my issue IF I could get the correct hostname configured, assuming in .fogsettings.

          That’s a super dangerous command… very very dangerous.

          Imagine having 6,000 hosts with the FOG Client installed… and then suddenly NOT being able to control them through the FOG Client anymore… that’s what that command does.

          If the CA is created, but hosts are already deployed using the old one, you WILL loose control of those hosts, and to regain control, you must reinstall the FOG Client on each and every one of them.

          Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
          Daily Clean Installation Results:
          https://fogtesting.fogproject.us/
          FOG Reporting:
          https://fog-external-reporting-results.fogproject.us/

          A 1 Reply Last reply Feb 2, 2016, 1:59 AM Reply Quote 1
          • A
            apathetic_admin @Wayne Workman
            last edited by Feb 2, 2016, 1:59 AM

            @Wayne-Workman Yeah, that’s why I’m trying to work out my issues now - this is a fresh upgrade on a new server (installed FOG on new hardware, then moved my snapins and database over). Only place I have the new client installed is on a new image I’m working on, so this is the time to get this worked out. Next I have to try and figure out why the old FOG clients aren’t auto-upgrading like I would have thought they would.

            1 Reply Last reply Reply Quote 0
            • 1 / 1
            1 / 1
            • First post
              5/5
              Last post

            170

            Online

            12.0k

            Users

            17.3k

            Topics

            155.2k

            Posts
            Copyright © 2012-2024 FOG Project