Can anyone help with a simple tutorial on how to replace the self-signed SSL cert generated upon install with my own?
Background: I have a pfsense box that acts as a local CA on my LAN. I have generated a cert (for domain openhab.local) that I would like to install on the openhabian box so that Chromium doesn’t complain when loading HABPanel pages.
I’ve spent the majority of a day working on this and it keeps failing. This is the procedure I have followed:
Step 1: Create the p12 cert
Step 2: Copy the p12 cert to keystore format
Step 3: Save the keystore to /var/lib/openhab2/etc (I renamed the existing keystore as .bk)
Step 4: Obfuscate the new keystore password (using java -cp /usr/share/openhab2/runtime/system/org/eclipse/jetty/jetty-util/9.4.20.v20190813/jetty-util-9.4.20.v20190813.jar org.eclipse.jetty.util.security.Password “XXXXX”
Step 5: Edit /usr/share/openhab2/runtime/etc/jetty.xml and insert new obfuscated password.
Before I start posting logs, can someone confirm that this is in fact the way to do it?