Hello, I’m upgrading our self-hosted server from 2.6.x to 3.2.1. I believe we’re running into issues due to changes in how the certificates/private keys are generated. If I use the keygen script to generate a brand new set of keys, everything works fine i.e. the website loads and I can see our exi…

I’m afraid I cannot think of a workaround, because pinning the device to a specific server certificate is normally reserved for non-production setups or ones where it’s easy to change them. For production, you would normally add the CA cert (self-signed CA cert or 3rd party if not already in ca-cer…

Certificate issue when upgrading server from 2.6 to 3.2.1

General Discussions

spratesi April 22, 2022, 9:04am 5

I think this is related Is key rotation made mandatory by 3.1 update?

1 Like

Topic		Replies	Views
Certificates and Keys Question while Installing General Discussions	3	469	June 18, 2019
Issue with x509 certificate on Ubuntu General Discussions x509 , new-install	5	3311	December 3, 2019
Using an already existing certificate while installing Mender General Discussions	9	1151	June 27, 2019
Is key rotation made mandatory by 3.1 update? General Discussions	2	405	February 18, 2022
[Demo installation] Certificate: "certificate relies on legacy Common Name field, use SANs or temporarily enable Common Name matching with GODEBUG=x509ignoreCN=0" error General Discussions	3	3526	September 7, 2021

Certificate issue when upgrading server from 2.6 to 3.2.1

Related topics