How can we help?

How to install your own SSL certificate


By default SMSEagle devices uses self-signed SSL certificates. If in your company you have your own certs, feel free to change ours to yours.

You have to upload your certificate files to the device and change weserver settings accordingly. 
To do this please use SFTP client and connect using SSH credentials. Place your files in desired directory (e.g /etc/ssl).
[Above works only for NXS devices, for NPE device please use FTP connection, and place certificates at /mnt/nand-user/lighttpd/etc directory]

[NXS device type:]
If you're replacing server.key file, please also change its permissions/ownership with:
chmod 600 server.key
chown postgres:postgres server.key

Next step is to modify Apache webserver configuration. It's stored at /etc/apache2/sites-enabled/000-default-ssl file (for SSL site).

Default certs are here:
SSLCertificateFile //etc/ssl/server.crt
SSLCertificateKeyFile /etc/ssl/server.key

you have to adjust these (and the other SSL certs if need) lines for your cert files accordingly. Then just reload Apache configuration with:
service apache2 reload

[NPE device type:]
After placing your certifiacte at /mnt/nand-user/lighttpd/etc directory please edit webserver config file: /mnt/nand-user/lighttpd/etc/lighttpd.conf and adjust certs name in there:
ssl.pemfile = "/mnt/nand-user/lighttpd/etc/lighttpd.pem"
to your own file.

Then just restart webserver:
killall lighttpd

Was this article helpful?
0 out of 0 found this helpful