Add a SSL Certificate on Web Console

By default, the Web Console is accessible on HTTP.

Nodeum allows the configuration of its Web Console with SSL Certificate.

Here are the instructions to be followed.

Preamble

We consider in this example the following parameters:

Server hostname is nodeum.mydomain.com
Server IP is 10.1.2.3
The Nodeum Ansible package is extracted in the folder ~/v1-x-y/
Certificate validity period of key SSL is 365 days
Private key file name is "private.key" and will be stored into the folder ~/v1-x-y/files/nodeum_certs/
Certificate file name is "public.crt" and will be stored into the folder ~/v1-x-y/files/nodeum_certs/

Creation of the self-signed certificate

In the folder where you have extracted the Nodeum Ansible inventory, you have to go into the folder /files/ to execute this command.

Verification that the certificates are well generated

These certificates will be used by nginx (Console UI and API) to configure the use of SSL. The public certificate will also be used by some services that need to access the API.

Enable the SSL requirement

Once done, it's required to update the Nodeum Ansible inventory file and specify that SSL has to be enabled.

And then execute the Nodeum Ansible playbook installation.

Once HTTPS is enable, the Nodeum HTTP Console access is disabled. All requests through HTTP are automatically redirect to HTTPS.

Last updated 10 months ago