Return-Path: <users-return-25916-archive-asf-public=cust-asf.ponee.io@cloudstack.apache.org>
X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io
Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io
Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183])
	by cust-asf2.ponee.io (Postfix) with ESMTP id 72AEF200B2D
	for <archive-asf-public-internal@cust-asf2.ponee.io>; Thu, 16 Jun 2016 18:51:43 +0200 (CEST)
Received: by cust-asf.ponee.io (Postfix)
	id 71301160A52; Thu, 16 Jun 2016 16:51:43 +0000 (UTC)
Delivered-To: archive-asf-public@cust-asf.ponee.io
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by cust-asf.ponee.io (Postfix) with SMTP id BA9271602C5
	for <archive-asf-public@cust-asf.ponee.io>; Thu, 16 Jun 2016 18:51:42 +0200 (CEST)
Received: (qmail 34998 invoked by uid 500); 16 Jun 2016 16:51:41 -0000
Mailing-List: contact users-help@cloudstack.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:users-help@cloudstack.apache.org>
List-Unsubscribe: <mailto:users-unsubscribe@cloudstack.apache.org>
List-Post: <mailto:users@cloudstack.apache.org>
List-Id: <users.cloudstack.apache.org>
Reply-To: users@cloudstack.apache.org
Delivered-To: mailing list users@cloudstack.apache.org
Received: (qmail 34976 invoked by uid 99); 16 Jun 2016 16:51:41 -0000
Received: from pnap-us-west-generic-nat.apache.org (HELO spamd2-us-west.apache.org) (209.188.14.142)
    by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 16 Jun 2016 16:51:41 +0000
Received: from localhost (localhost [127.0.0.1])
	by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id 0865D1A01BD;
	Thu, 16 Jun 2016 16:51:41 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org
X-Spam-Flag: NO
X-Spam-Score: 3.199
X-Spam-Level: ***
X-Spam-Status: No, score=3.199 tagged_above=-999 required=6.31
	tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1,
	HTML_MESSAGE=2, KAM_BADIPHTTP=2, NORMAL_HTTP_TO_IP=0.001,
	RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001]
	autolearn=disabled
Authentication-Results: spamd2-us-west.apache.org (amavisd-new);
	dkim=pass (2048-bit key) header.d=gmail.com
Received: from mx1-lw-eu.apache.org ([10.40.0.8])
	by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024)
	with ESMTP id nhFyefqnwPhr; Thu, 16 Jun 2016 16:51:38 +0000 (UTC)
Received: from mail-oi0-f47.google.com (mail-oi0-f47.google.com [209.85.218.47])
	by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with ESMTPS id ED0B85F19D;
	Thu, 16 Jun 2016 16:51:37 +0000 (UTC)
Received: by mail-oi0-f47.google.com with SMTP id p204so78640109oih.3;
        Thu, 16 Jun 2016 09:51:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :cc;
        bh=zr3xfN7+VAewTUF1PKIvzSwOQ6OLTz0t1FAsO7z7qgI=;
        b=VsdEVUxFotUaO5ikXpALrk/bRoChWxjWa+vdiGtCXmyK0AnkPOOMvtpDy7iXgrVQ57
         4IV7ekl0B6SMehCo+IGnaKXP5+HuLA1lfKVbTImvMAhGgILxlgDNsHqFIAaN9C/YEijw
         K9T6gqXrVHEurKawzjpVSex0uBLS3t1/SWXw9YUO182ARRSYDrjOyseiQ1KuvCZ3tPjB
         wjoOpmoH3Hl4VQgJ02SZIwiMMWKfKXkazLwLqaZyab+Q67Q7KNyNYREjmD6PV5dP7VHH
         hfpmgnvi2/RU62oHK3h+M6oPCK8gdzxF4GXxN4N4AeQ0IfrAvXygj7+AB/xK+oP5iNDF
         3tAg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20130820;
        h=x-gm-message-state:mime-version:in-reply-to:references:date
         :message-id:subject:from:to:cc;
        bh=zr3xfN7+VAewTUF1PKIvzSwOQ6OLTz0t1FAsO7z7qgI=;
        b=U2nJpmdV8EMMePJJxQXJXHwHjOM8Cv9XbGEulnonOKwIH5C4onWCIH/oQXOFrp48z8
         XiJ0dj4l9gb+SdDoEO3L0mOLBW1YtolVZSOAveUjdoefHjJsjtpIeEIGgwjtCi4aFzoX
         jka9FpxYI7YK9G/Cdthv/Q0LdwoJxV0eZHeN0y0mhTcm8LfFq5AJguqJJWLS5zOqkWkN
         0y1YXlfwU106vE2YSoI4YafjGo9PsFoAllUh5J5TUUxCJMxUMcfU0sJyVh42YS3RmvRO
         a1kPCtrFJsWw8bhhN3Di0ZOpsvwWYYmUloD/tOk6tYaa3fNR/iBdbCdQnLpxir+og5Vq
         SrKQ==
X-Gm-Message-State: ALyK8tJgP+naHCR5Y4yYuDa9gDNpEQ2a4bSDPcn18iuOwhKN62el+5RauJHahLAKeiH+LAwzCLNODqkMybdSKA==
MIME-Version: 1.0
X-Received: by 10.202.75.5 with SMTP id y5mr2770373oia.68.1466095896753; Thu,
 16 Jun 2016 09:51:36 -0700 (PDT)
Received: by 10.202.63.3 with HTTP; Thu, 16 Jun 2016 09:51:36 -0700 (PDT)
Received: by 10.202.63.3 with HTTP; Thu, 16 Jun 2016 09:51:36 -0700 (PDT)
In-Reply-To: <1488596449.5301.1466093943650.JavaMail.zimbra@li.nux.ro>
References: <2110649159.5276.1466092494653.JavaMail.zimbra@li.nux.ro>
	<CAC2panr+j5Q83jVG9Bu_Zv3E76UE+VMhDZXvD75uSuh6CmGTwg@mail.gmail.com>
	<ADB0D440-0196-4237-AEEE-E3CBC3AA9CA5@xecu.net>
	<1488596449.5301.1466093943650.JavaMail.zimbra@li.nux.ro>
Date: Thu, 16 Jun 2016 12:51:36 -0400
Message-ID: <CAC2panocMhvZ2p_+TTCq+B2YJgzQjtDZ2u94pDiM7Cnwj-hnxg@mail.gmail.com>
Subject: Re: Failing to enable SSL/HTTPS on console proxy vm
From: Will Stevens <williamstevens@gmail.com>
To: dev@cloudstack.apache.org
Cc: users@cloudstack.apache.org
Content-Type: multipart/alternative; boundary=001a113dc7622203a60535680dca
archived-at: Thu, 16 Jun 2016 16:51:43 -0000

--001a113dc7622203a60535680dca
Content-Type: text/plain; charset=UTF-8

That's in global settings I presume?
On Jun 16, 2016 12:19 PM, "Nux!" <nux@li.nux.ro> wrote:

> Dammit, I was missing the consoleproxy.url.domain! What an idiot ...
> Works just fine now.
>
> Will, it can be done, don't give up! :)
>
> Thanks Andy!
>
> Lucian
>
> --
> Sent from the Delta quadrant using Borg technology!
>
> Nux!
> www.nux.ro
>
> ----- Original Message -----
> > From: "Andy Dills" <andy@xecu.net>
> > To: users@cloudstack.apache.org
> > Cc: dev@cloudstack.apache.org
> > Sent: Thursday, 16 June, 2016 17:10:55
> > Subject: Re: Failing to enable SSL/HTTPS on console proxy vm
>
> > I have this working perfectly.
> >
> > Couple of key things that are not mentioned in the
> > documentation:
> >
> > - You need to set consoleproxy.url.domain to *.domain.com for whatever
> domain
> > you're using. Do this before re-uploading your SSL certificate. The SSL
> upload
> > dialogue doesn't set this value as it should.
> >
> > - You need a wildcard certificate for that domain.
> >
> > Assuming you setup the proper DNS records, it should then work.
> >
> > I'm open to follow up questions if anybody is struggling with this.
> >
> > Thanks,
> > Andy
> >
> > Sent from my iPhone
> >
> >> On Jun 16, 2016, at 12:01 PM, Will Stevens <wstevens@cloudops.com>
> wrote:
> >>
> >> We have been having issues with this for as long as I can remember (on
> both
> >> ACS and CCP).  In order to get it to work you have to 'trust unsafe
> >> scripts' or whatever by clicking the shield in the URL bar in the top
> right
> >> (maybe that is chrome).
> >>
> >> I don't know that there is a solution, but if there is, I am all ears...
> >>
> >> *Will STEVENS*
> >> Lead Developer
> >>
> >> *CloudOps* *| *Cloud Solutions Experts
> >> 420 rue Guy *|* Montreal *|* Quebec *|* H3J 1S6
> >> w cloudops.com *|* tw @CloudOps_
> >>
> >>> On Thu, Jun 16, 2016 at 11:54 AM, Nux! <nux@li.nux.ro> wrote:
> >>>
> >>> Hi,
> >>>
> >>> Is there any particular voodoo involved in getting the $subject to work
> >>> correctly on 4.8.0?
> >>> I've uploaded the Comodo wildcard cabundle, crt and key in the
> >>> Infrastructure page, the systemvms have rebooted.
> >>> They came back fine and nothing dodgy in the logs, but when I open the
> >>> console of a VM Firefox will say there are insecure contents loaded and
> >>> will not display the terminal ajax thingy.
> >>> View source shoes an iframe linking http://1.2.3.4 instead of
> >>> https://1-2-3-4.wildcarddomain.tld.
> >>>
> >>> Apache HTTPD and Tomcat had no issues with these certs.
> >>>
> >>> Is there something that I am missing?
> >>>
> >>> Thanks
> >>>
> >>>
> >>> --
> >>> Sent from the Delta quadrant using Borg technology!
> >>>
> >>> Nux!
> >>> www.nux.ro
>

--001a113dc7622203a60535680dca--