I use https www home assistant io | Home Assistant | Page 1

viscid garden Jun 15, 2023, 4:25 PM

#

When you say "CA"... exactly what are you talking about?

#

SSL certificates?

#

Oh... another post and run?

#

If so, you want something like certbot or dehydrated - or to use a proxy server like Traefik that can handle it all for you

carmine knot Jun 15, 2023, 5:14 PM

#

yes I have SSL in mind, moved HA from RPi to Docker. there I configured the duckdns integration and used the original data (domain, token) but the SSL CA is renewed once a month.

viscid garden Jun 15, 2023, 5:46 PM

#

Well, if you moved from HAOS to Docker, the DuckDNS add-on included LetsEncrypt functionality

#

you want something like certbot or dehydrated - or to use a proxy server like Traefik that can handle it all for you

#

Personally I'd recommend Traefik, though any of those require you to do a little learning

carmine knot Jun 15, 2023, 6:23 PM

#

I think if I wait until the beginning of the month so the service will start and renew ssl ca

thin halo Jun 15, 2023, 6:47 PM

#

I'm doing a local SSL cert (using nabucase for remote). Using a different vm with acme.sh to generate the certificate, and then it gets SCPed to the HA vm. then calls the restart api

viscid garden Jun 15, 2023, 6:49 PM

#

carmine knot I think if I wait until the beginning of the month so the service will start and...

No... it won't

#

Nothing is going to happen unless you make it happen

viscid garden Jun 15, 2023, 7:10 PM

#

If you don't want to take the easy path of Traefik then you need something like https://eff-certbot.readthedocs.io/en/stable/install.html#running-with-docker and to map all the right volumes - both to Home Assistant's container and to whatever container you're rurnnng to update those certificates

carmine knot Jun 16, 2023, 5:48 PM

#

viscid garden No... it won't

It already worked, at the beginning of the new month (2x) but I updated the container and the SSL in it was deleted, I mapped the folder to SSL so that it would no longer be deleted when updating.

viscid garden Jun 16, 2023, 7:09 PM

#

Well, you need some software to update the SSL certificate ... are you saying you've done that?

carmine knot Jun 17, 2023, 5:21 AM

#

I use the integration:
https://www.home-assistant.io/integrations/duckdns/

# DuckDNS
duckdns:
  domain: xxx.duckdns.org
  access_token: token... 

#http:
http:
  server_port: 443
  ssl_certificate: /ssl/fullchain.pem
  ssl_key: /ssl/privkey.pem

But updating the image in the docker deleted my ssl ca and now I would need a forced renew CA.

viscid garden Jun 17, 2023, 7:05 PM

#

Did you read the integration docs?

#

You'll note it says nothing about updating your SSL certificate

#

Because ... it doesn't

#

#1118939040536866929 message

#

As I keep tellng you, you need to install and configure something to update your certificates

#I use https www home assistant io