You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@cloudstack.apache.org by Support Admin <su...@technologyrss.com> on 2021/01/17 16:57:58 UTC
Not open console vm using ssl
*Hello,*
I am trying to install SSL using Let's encrypt, Install successfully
done and access CT UI is ok.
consoleproxy.url.domain *cloud.technologyrss.com*
consoleproxy.sslEnabled *true*
secstorage.ssl.cert.domain *cloud.technologyrss.com**
***secstorage.encrypt.copy *true*
this is Global settings on my CT server also
/etc/cloudstack/management/server.propertiesĀ using true.
https.enable=*true*
https.port=*8443*
Then upload certificate into UI.
Root certificate: *cert.pem*
Server certificate: *fullchain.pem*
PKCS#8 Private Key : *privkey.pem*
DNS Domain Suffix: *cloud.technologyrss.com*
**
When upload and click OK then I see status is *success, But I can't
access any sysvm.*
ISO upload is ok, When I try to access instance then see below error.
Please help me what can I do..
--
*Thanks & Regards.*
Support Admin
Facebook <htps://facebook.com/technologyrss> | Twitter
<https://twitter.com/technologyrss1> | Website <https://technologyrss.com>
116/1 West Malibagh, D. I. T Road
Dhaka-1217, Bangladesh
*Mob :* +088 01716915504
*Email :* support.admin@technologyrss.com
*Web :* www.technologyrss.com <https://technologyrss.com>
Re: Not open console vm using ssl
Posted by Rohit Yadav <ro...@shapeblue.com>.
The console URL points to public IP or domain of cpvm (the domain should resolve to public IP of cpvm). Please read https://www.shapeblue.com/securing-cloudstack-4-11-with-https-tls/
Regards.
Regards,
Rohit Yadav
________________________________
From: Technologyrss Mail <te...@gmail.com>
Sent: Monday, January 18, 2021 3:44:38 PM
To: Rohit Yadav <ro...@shapeblue.com>; dev@cloudstack.apache.org <de...@cloudstack.apache.org>; Wei ZHOU <us...@gmail.com>
Subject: Re: Not open console vm using ssl
My all server is local environment, So that means CPVM local ip forward to 80 port ? and must be resolve vmconsole.cloud.technologyrss.com this domain.
On 1/18/2021 3:02 PM, Rohit Yadav wrote:
The CPVM domain should resolve to the CPVM public IP and not the management server public IP.
Regards.
rohit.yadav@shapeblue.com<ma...@shapeblue.com>
www.shapeblue.com<http://www.shapeblue.com>
@shapeblue
________________________________
From: Technologyrss Mail <te...@gmail.com>
Sent: Monday, January 18, 2021 11:57
To: dev@cloudstack.apache.org<ma...@cloudstack.apache.org> <de...@cloudstack.apache.org>; Wei ZHOU <us...@gmail.com>
Subject: Re: Not open console vm using ssl
Hi,
I can't find this from Global configuration console.url.domain. Maybe it should be consoleproxy.url.domain.
I am setup consoleproxy.url.domain=vmconsole.cloud.technologyrss.com
secstorage.ssl.cert.domain=cloud.technologyrss.com
<http://cloud.technologyrss.com>
cloud.technologyrss.com<http://cloud.technologyrss.com>=my public ip (182.48.66.198)
vmconsole.cloud.technologyrss.com=my public ip (182.48.66.198)
But when I open vm console I see below error. What is issue for my settings ?
[cid:part3.412E8488.B08F1568@gmail.com]
On 1/18/2021 1:12 AM, Wei ZHOU wrote:
Hi,
console.url.domain should be a wildcard like *.cloud.domainmain.com<http://cloud.domainmain.com> , or a domain name like vmconsole.cloud.domainname.com<http://vmconsole.cloud.domainname.com>
-Wei
On Sunday, 17 January 2021, Support Admin <su...@technologyrss.com>> wrote:
Hello,
I am trying to install SSL using Let's encrypt, Install successfully done and access CT UI is ok.
consoleproxy.url.domain cloud.technologyrss.com<http://cloud.technologyrss.com>
consoleproxy.sslEnabled true
secstorage.ssl.cert.domain cloud.technologyrss.com<http://cloud.technologyrss.com>
secstorage.encrypt.copy true
this is Global settings on my CT server also
/etc/cloudstack/management/server.properties using true.
https.enable=true
https.port=8443
Then upload certificate into UI.
Root certificate: cert.pem
Server certificate: fullchain.pem
PKCS#8 Private Key : privkey.pem
DNS Domain Suffix : cloud.technologyrss.com<http://cloud.technologyrss.com>
When upload and click OK then I see status is success, But I can't access any sysvm.
ISO upload is ok, When I try to access instance then see below error.
[cid:part1.5FB8C961.9E7A1B58@technologyrss.com]
Please help me what can I do..
--
Thanks & Regards.
Support Admin
Facebook | Twitter<https://twitter.com/technologyrss1> | Website<https://technologyrss.com>
116/1 West Malibagh<https://www.google.com/maps/search/1+West+Malibagh?entry=gmail&source=g>, D. I. T Road
Dhaka-1217, Bangladesh
Mob : +088 01716915504
Email : support.admin@technologyrss.com<ma...@technologyrss.com>
Web : www.technologyrss.com<https://technologyrss.com>
Re: Not open console vm using ssl
Posted by Technologyrss Mail <te...@gmail.com>.
My all server is local environment, So that means CPVM local ip forward
to 80 port ? and must be resolve *vmconsole.cloud.technologyrss.comthis
domain.
*
On 1/18/2021 3:02 PM, Rohit Yadav wrote:
> The CPVM domain should resolve to the CPVM public IP and not the
> management server public IP.
>
> Regards.
>
> rohit.yadav@shapeblue.com
> www.shapeblue.com
> @shapeblue
>
> ------------------------------------------------------------------------
> *From:* Technologyrss Mail <te...@gmail.com>
> *Sent:* Monday, January 18, 2021 11:57
> *To:* dev@cloudstack.apache.org <de...@cloudstack.apache.org>; Wei ZHOU
> <us...@gmail.com>
> *Subject:* Re: Not open console vm using ssl
>
> Hi,
>
> I can't find this from Global configuration *console.url.domain*.
> Maybe it should be consoleproxy.url.domain.
>
> I am setup *consoleproxy.url.domain=*vmconsole.cloud.technologyrss.com
>
> *secstorage.ssl.cert.domain=*cloud.technologyrss.com
>
> <http://cloud.technologyrss.com>
>
> cloud.technologyrss.com <http://cloud.technologyrss.com>*=my public ip
> (**182.48.66.198)*
>
> *vmconsole.cloud.technologyrss.com=**my public ip (**182.48.66.198)*
>
> *But when I open vm console I see below error. What is issue for my
> settings ?
> *
>
> **
>
> On 1/18/2021 1:12 AM, Wei ZHOU wrote:
>> Hi,
>>
>> console.url.domain should be a wildcard like *.cloud.domainmain.com
>> <http://cloud.domainmain.com> , or a domain name like
>> vmconsole.cloud.domainname.com <http://vmconsole.cloud.domainname.com>
>>
>> -Wei
>>
>> On Sunday, 17 January 2021, Support Admin
>> <support.admin@technologyrss.com
>> <ma...@technologyrss.com>> wrote:
>>
>> *Hello,*
>>
>> I am trying to install SSL using Let's encrypt, Install
>> successfully done and access CT UI is ok.
>>
>> consoleproxy.url.domain *cloud.technologyrss.com
>> <http://cloud.technologyrss.com>*
>> consoleproxy.sslEnabled *true*
>> secstorage.ssl.cert.domain *cloud.technologyrss.com
>> <http://cloud.technologyrss.com>**
>> *secstorage.encrypt.copy *true*
>>
>>
>> this is Global settings on my CT server also
>>
>> /etc/cloudstack/management/server.properties using true.
>>
>> https.enable=*true*
>> https.port=*8443*
>>
>> Then upload certificate into UI.
>>
>> Root certificate: *cert.pem*
>>
>> Server certificate: *fullchain.pem*
>>
>> PKCS#8 Private Key : *privkey.pem*
>>
>> DNS Domain Suffix: *cloud.technologyrss.com
>> <http://cloud.technologyrss.com>*
>>
>> When upload and click OK then I see status is *success, But I
>> can't access any sysvm.*
>>
>> ISO upload is ok, When I try to access instance then see below error.
>>
>>
>> Please help me what can I do..
>>
>> --
>>
>> *Thanks & Regards.*
>>
>> Support Admin
>>
>> Facebook | Twitter <https://twitter.com/technologyrss1> | Website
>> <https://technologyrss.com>
>>
>> 116/1 West Malibagh
>> <https://www.google.com/maps/search/1+West+Malibagh?entry=gmail&source=g>,
>> D. I. T Road
>>
>> Dhaka-1217, Bangladesh
>>
>> *Mob :* +088 01716915504
>>
>> *Email :* support.admin@technologyrss.com
>> <ma...@technologyrss.com>
>>
>> *Web :* www.technologyrss.com <https://technologyrss.com>
>>
Re: Not open console vm using ssl
Posted by Rohit Yadav <ro...@shapeblue.com>.
The CPVM domain should resolve to the CPVM public IP and not the management server public IP.
Regards.
________________________________
From: Technologyrss Mail <te...@gmail.com>
Sent: Monday, January 18, 2021 11:57
To: dev@cloudstack.apache.org <de...@cloudstack.apache.org>; Wei ZHOU <us...@gmail.com>
Subject: Re: Not open console vm using ssl
Hi,
I can't find this from Global configuration console.url.domain. Maybe it should be consoleproxy.url.domain.
I am setup consoleproxy.url.domain=vmconsole.cloud.technologyrss.com
secstorage.ssl.cert.domain=cloud.technologyrss.com
<http://cloud.technologyrss.com>
cloud.technologyrss.com<http://cloud.technologyrss.com>=my public ip (182.48.66.198)
vmconsole.cloud.technologyrss.com=my public ip (182.48.66.198)
But when I open vm console I see below error. What is issue for my settings ?
[cid:part3.412E8488.B08F1568@gmail.com]
On 1/18/2021 1:12 AM, Wei ZHOU wrote:
Hi,
console.url.domain should be a wildcard like *.cloud.domainmain.com<http://cloud.domainmain.com> , or a domain name like vmconsole.cloud.domainname.com<http://vmconsole.cloud.domainname.com>
-Wei
On Sunday, 17 January 2021, Support Admin <su...@technologyrss.com>> wrote:
Hello,
I am trying to install SSL using Let's encrypt, Install successfully done and access CT UI is ok.
consoleproxy.url.domain cloud.technologyrss.com<http://cloud.technologyrss.com>
consoleproxy.sslEnabled true
secstorage.ssl.cert.domain cloud.technologyrss.com<http://cloud.technologyrss.com>
secstorage.encrypt.copy true
this is Global settings on my CT server also
/etc/cloudstack/management/server.properties using true.
https.enable=true
https.port=8443
Then upload certificate into UI.
Root certificate: cert.pem
Server certificate: fullchain.pem
PKCS#8 Private Key : privkey.pem
DNS Domain Suffix : cloud.technologyrss.com<http://cloud.technologyrss.com>
When upload and click OK then I see status is success, But I can't access any sysvm.
ISO upload is ok, When I try to access instance then see below error.
[cid:part1.5FB8C961.9E7A1B58@technologyrss.com]
Please help me what can I do..
--
Thanks & Regards.
Support Admin
Facebook | Twitter<https://twitter.com/technologyrss1> | Website<https://technologyrss.com>
116/1 West Malibagh<https://www.google.com/maps/search/1+West+Malibagh?entry=gmail&source=g>, D. I. T Road
Dhaka-1217, Bangladesh
Mob : +088 01716915504
Email : support.admin@technologyrss.com<ma...@technologyrss.com>
Web : www.technologyrss.com<https://technologyrss.com>
rohit.yadav@shapeblue.comĀ
www.shapeblue.com
3 London Bridge Street, 3rd floor, News Building, London SE1 9SGUK
@shapeblue
Re: Not open console vm using ssl
Posted by Technologyrss Mail <te...@gmail.com>.
Hi,
I can't find this from Global configuration *console.url.domain*. Maybe
it should be consoleproxy.url.domain.
I am setup *consoleproxy.url.domain=*vmconsole.cloud.technologyrss.com
*secstorage.ssl.cert.domain=*cloud.technologyrss.com
<http://cloud.technologyrss.com>
cloud.technologyrss.com <http://cloud.technologyrss.com>*=my public ip
(**182.48.66.198)*
*vmconsole.cloud.technologyrss.com=**my public ip (**182.48.66.198)*
*But when I open vm console I see below error. What is issue for my
settings ?
*
**
On 1/18/2021 1:12 AM, Wei ZHOU wrote:
> Hi,
>
> console.url.domain should be a wildcard like *.cloud.domainmain.com
> <http://cloud.domainmain.com> , or a domain name like
> vmconsole.cloud.domainname.com <http://vmconsole.cloud.domainname.com>
>
> -Wei
>
> On Sunday, 17 January 2021, Support Admin
> <support.admin@technologyrss.com
> <ma...@technologyrss.com>> wrote:
>
> *Hello,*
>
> I am trying to install SSL using Let's encrypt, Install
> successfully done and access CT UI is ok.
>
> consoleproxy.url.domain *cloud.technologyrss.com
> <http://cloud.technologyrss.com>*
> consoleproxy.sslEnabled *true*
> secstorage.ssl.cert.domain *cloud.technologyrss.com
> <http://cloud.technologyrss.com>**
> ***secstorage.encrypt.copy *true*
>
>
> this is Global settings on my CT server also
>
> /etc/cloudstack/management/server.properties using true.
>
> https.enable=*true*
> https.port=*8443*
>
> Then upload certificate into UI.
>
> Root certificate: *cert.pem*
>
> Server certificate: *fullchain.pem*
>
> PKCS#8 Private Key : *privkey.pem*
>
> DNS Domain Suffix: *cloud.technologyrss.com
> <http://cloud.technologyrss.com>*
>
> **
>
> When upload and click OK then I see status is *success, But I
> can't access any sysvm.*
>
> ISO upload is ok, When I try to access instance then see below error.
>
>
> Please help me what can I do..
>
> --
>
> *Thanks & Regards.*
>
> Support Admin
>
> Facebook | Twitter <https://twitter.com/technologyrss1> | Website
> <https://technologyrss.com>
>
> 116/1 West Malibagh
> <https://www.google.com/maps/search/1+West+Malibagh?entry=gmail&source=g>,
> D. I. T Road
>
> Dhaka-1217, Bangladesh
>
> *Mob :* +088 01716915504
>
> *Email :* support.admin@technologyrss.com
> <ma...@technologyrss.com>
>
> *Web :* www.technologyrss.com <https://technologyrss.com>
>
Re: Not open console vm using ssl
Posted by Wei ZHOU <us...@gmail.com>.
Hi,
console.url.domain should be a wildcard like *.cloud.domainmain.com , or a
domain name like vmconsole.cloud.domainname.com
-Wei
On Sunday, 17 January 2021, Support Admin <su...@technologyrss.com>
wrote:
> *Hello,*
>
> I am trying to install SSL using Let's encrypt, Install successfully done
> and access CT UI is ok.
>
> consoleproxy.url.domain *cloud.technologyrss.com
> <http://cloud.technologyrss.com>*
> consoleproxy.sslEnabled *true*
> secstorage.ssl.cert.domain *cloud.technologyrss.com
> <http://cloud.technologyrss.com>*
> secstorage.encrypt.copy *true*
>
>
> this is Global settings on my CT server also
>
> /etc/cloudstack/management/server.properties using true.
>
> https.enable=*true*
> https.port=*8443*
>
> Then upload certificate into UI.
>
> Root certificate: *cert.pem*
>
> Server certificate: *fullchain.pem*
>
> PKCS#8 Private Key : *privkey.pem*
>
> DNS Domain Suffix : *cloud.technologyrss.com
> <http://cloud.technologyrss.com>*
>
> When upload and click OK then I see status is *success, But I can't
> access any sysvm.*
>
> ISO upload is ok, When I try to access instance then see below error.
>
>
> Please help me what can I do..
> --
>
> *Thanks & Regards.*
>
> Support Admin
>
> Facebook | Twitter <https://twitter.com/technologyrss1> | Website
> <https://technologyrss.com>
>
> 116/1 West Malibagh
> <https://www.google.com/maps/search/1+West+Malibagh?entry=gmail&source=g>,
> D. I. T Road
>
> Dhaka-1217, Bangladesh
>
> *Mob :* +088 01716915504
>
> *Email :* support.admin@technologyrss.com
>
> *Web :* www.technologyrss.com <https://technologyrss.com>
>