Rémi Benoit

Mounted the certificate on the correct path /mnt/external/secrets/tls/ks/ and now it's recognized and used. Many thanks !

Indeed, I'd like to use a certificate using my custom hostname as my container instance has the hostname parameter set at startup by Azure and I have no control over it. I tried to put a server.jks containing the new certificate and created the files server.storepasswd and server.keypasswd both containing the certificate password. But even after restart the certificates doesn't seem to be used. My setup looks like this bash-4.2$ ls -l /mnt/secrets/tls/ks/ total 9 -rwxr-xr-x 1 root root 4117 Oct 30...

Many thanks! Generating a certificate with RSA 3072 made it work. One thing I still struggle with is correctly setting the hostname when creating the instance. I'm running an azure container instance and I have no control on the docker run parameters so I cannot set the hostname parameter as stated in the docker hub documentation. Is there an environnement variable I can use to correctly set the hostname on startup ? Alternatively, could you point me to the relevant docs to change the hostname and...

Generating a certificate with RSA 3072 made it work. One thing I still struggle with is correctly setting the hostname when creating the instance. I'm running an azure container instance and I have no control on the docker run parameters so I cannot set the hostname parameter as stated in the docker hub documentation. Is there an environnement variable I can use to correctly set the hostname on startup ? Alternatively, could you point me to the relevant docs to change the hostname and the certificate...

Hi Johan, I used the following docker-compose.yml to start the instance. I can access the admin gui using TLS_SETUP_ENABLED=simple. I've imported the superadmin.p12 file and i'm correctly prompted by the browser to use it. So port is accessible and the certificate is being used. I imported it the same way as our ejbca instance running on a virtual machine, which I have no problem accessing. If I can try anything else let me know. Cheers, Rémi .

Hi Johan, I used the following docker-compose.yml to start the instance. I can access the admin gui using TLS_SETUP_ENABLED=simple. I've imported the superadmin.p12 file and i'm correctly prompted by the browser to use it. So port is accessible and the certificate is being used. I imported it the same way as our ejbca instance running on a virtual machine, which I have no problem accessing. If I can try anything else let me know. Cheers, Rémi .