[Users] noVNC https certs

Thomas Suckow thomas.suckow at pnnl.gov
Mon Jan 13 17:54:31 UTC 2014


On 01/13/2014 09:50 AM, Neil Schulz wrote:
> So, this is the only way to stop having to accept the cert?
>
> I'd have to tell all our clients to download and install that cert to 
> their workstation?
>
No.

You can replace the  Websocket Proxy certs referenced by
/etc/ovirt-engine/ovirt-websocket-proxy.conf.d/10-setup.conf

The websocket proxy needs a combined certificate file with your cert and
the entire chain for SSL_CERTIFICATE

SSL_KEY is just the unencrypted key, and it MUST be accessible by the
ovirt user.



More information about the Users mailing list