Enabling HTTPS on the FireBrick: Difference between revisions

(4 intermediate revisions by the same user not shown)

Line 3:

The certificates can be generated by the [https://en.wikipedia.org/wiki/Let%27s_Encrypt Let's Encrypt] service ''automagically'' once the ACME settings have been filled in. Alternatively, the FireBrick can also try negotiate HTTPS using it's own self-signed certificate which is usually generated automatically.

==Setting up ACME==

==Setting up ACME (Let's Encrypt)==

By default, the FireBrick will ship with the 'ISRG Root X1' root certificate that's needed for Let's Encrypt and the 'acme-directory' setting defaults to Let's Encrypt. Using Let's Encrypt is therefore very easy.

Other cert providers will need their root certificate installing and the 'acme-directory' setting set.

*Set up a domain hostname for your FireBrick - eg fb.yourdomain.com - pointing to the IP address of your FireBrick

*Under Config > Edit > Setup > System Settings

**Fill in:

Line 19:

Line 24:

This process might not always be immediate. If it does not work immediately, allow some time for things to propagate.

Video:

==Using a self-signed certificate==

https://www.youtube.com/embed/747vD5DGnt8

''Under Config > Edit > Setup > General System Services > Web Server Settings > Click '''Show All''' underneath the immediate set of boxes''

[[File:Https ss.png|thumb|right]]

Tick 'mode' and set to 'redirect-to-https' and ensure that 'https-port' is set to 443. Also ensure that 'self-sign' is set to true.