Did you set anything up? Sign up for the NabuCasa #cloud-archived service? Configure DuckDNS + SSL? Anything?

Because if you didn't do anything then you don't have remote access

And as the GA docs tell you, you need that

are clouds paid?

The Nabu Casa service is

DuckDNS is free

The cloud service also has UI point-n-click setup for Google Assistant 😛

Manual setup (if you don’t have Home Assistant Cloud)

Right...

So, you don't have the cloud service?

I don't have any cloud service.

Then you have to set up remote access manually

DuckDNS is the way a lot of people go, but there's many options

https://community.home-assistant.io/t/remote-access-for-home-assistant/206072

what are the "-"

What?

- are dashes 😛

the downsides of that cloud

Well, Nabu Casa is easy and paid for

DuckDNS, and the other options, are free and work from you

ok so

how can i setup it?

1. install the DuckDNS add-on
2. Read the docs for it
3. Read the link above

1. done

Now read the docs for it

Then, once you understand how to set it up, read the forum link above which covers all the things you need for port forwarding, and more

how should i name my domain?

is it my thing?

pick-whatever-you-want.duckdns.org

ok :D

duckdns running

Did you tell it to get you SSL certs from LetsEncrypt?

Or did you skip past that part of the docs?

e?

The docs... you really should read the docs

They tell you how to get SSL certs

These settings only apply to Let's Encrypt SSL certificates

You want those

You need SSL

https://www.home-assistant.io/integrations/duckdns/

this?

No

You need the docs that come with the add-on

I don't use add-ons, so all I can tell you is that they exist

https://github.com/home-assistant/addons/blob/master/duckdns/DOCS.md

this?

Says addons in the URL... looks good 😉

k

  ssl_certificate: /ssl/fullchain.pem
  ssl_key: /ssl/privkey.pem```

Then config check, then restart HA

At that point you must always use https:// to access HA

When using anything other than the hostname in the cert you'll get errors, because that's how SSL works

HA means home assistant? right?

Yes

  accept_terms: true
  certfile: fullchain.pem
  keyfile: privkey.pem
token: sdfj-2131023-dslfjsd-12321
domains:
  - my-domain.duckdns.org
aliases: []
seconds: 300```can i set this in the addon configuration and don't put it in to config....yml

That is for your add-on

And hopefully that's not your actual token

nah

from docs

yh but there is also this config tabhttps://imgur.com/a/jlNtPrf
so should i use config tab or config file?

The add-on config tab is for the add-on config, to save you editing files

They just format it differently

what to do with this?

#add-ons-archived can help you, but the obvious answer is to paste the relevant parts into the right bits of the add-on UI

You enter that in configuration.yaml

and my url that does not have eaven http:// just http://homeassistant.local:8123

Ah, that bit, yeah... I've got lost

i don't have thease variables

And it will now have to use https://

Because once you set HA up for SSL, it's 100% SSL 100% of the time

https://homeassistant.local:8123/

so this?

Yes, that

fuck this mention feture set on defult

This site can’t provide a secure connection
homeassistant.local sent an invalid response.

Once you've added those lines to configuration.yaml, run your config check, and restarted HA, you can't use http:// any more

Because you haven't yet finished

oh

thease?

Still yes

http:
  ssl_certificate: /ssl/fullchain.pem
  ssl_key: /ssl/privkey.pem

That goes in configuration.yaml

I don't know what variables you are talking about

^

What does that mean?

You enter what is shown, in confguration.yaml

something have to be in /ssl/privkey.pem ?

Yes, DuckDNS add-on puts those files there

When you run it and check the add-on logs you'll see this

And the add-on only puts them there once you've set it up correctly

Step #1 remains getting that done

I suspect you're still working on that... given what you posted above

You need to slow down, and do things in order, or you're just going to continue to struggle

This site can’t be reached
homeassistant.local refused to connect.

something is not right

Did you run the config check command?

Did you do that before restarting HA?

no

i forgot 💀

what should i do

HA should still start up, but with http:// to access it

if you added this incorrectly, it would use http: to access. If you added it correctly, you would use https:// and you would see a warning

http:
ssl_certificate: /ssl/fullchain.pem
ssl_key: /ssl/privkey.pem

I'm so sorry

It did

In recovery mode

https://filebin.net/ywxnl214ftb8s7t5

Here's the error log

i did delete this and it booted up

So next you try entering it correctly

And check config or show what you have entered before restarting

i ha core checked

but i can't crtl+shift+c becuse of some keybind in my browser

is it okay if i sent i picture?

You can link to one yes

https://imgur.com/a/Kvu5Isx

A screenshot of what you have entered would be better

intro config file?

That’s where it’s going wrong

# Loads default set of integrations. Do not remove.
default_config:

# Load frontend themes from the themes folder
frontend:
  themes: !include_dir_merge_named themes

automation: !include automations.yaml
script: !include scripts.yaml
scene: !include scenes.yaml

# Example configuration.yaml entry
google_assistant:
  project_id: home-asistant-44364
  service_account: !include SERVICE_ACCOUNT.JSON
  report_state: true
  expose_by_default: false
  entity_config:
    switch.kitchen:
      name: "light"
      expose: true
      
http:
  ssl_certificate: /ssl/fullchain.pem
  ssl_key: /ssl/privkey.pem

Is fullchain.pem on its own line? I can’t tell on mobile

It shouldn’t be

no

https://imgur.com/a/Hu0zPXF

like this

Oh is the add on running?

witch one?

Duckdns

yh

what do the add on logs show

s6-rc: info: service s6rc-oneshot-runner: starting
s6-rc: info: service s6rc-oneshot-runner successfully started
s6-rc: info: service fix-attrs: starting
s6-rc: info: service fix-attrs successfully started
s6-rc: info: service legacy-cont-init: starting
s6-rc: info: service legacy-cont-init successfully started
s6-rc: info: service legacy-services: starting
s6-rc: info: service legacy-services successfully started
s6-rc: info: service legacy-services: stopping
s6-rc: info: service legacy-services successfully stopped
s6-rc: info: service legacy-cont-init: stopping
s6-rc: info: service legacy-cont-init successfully stopped
s6-rc: info: service fix-attrs: stopping
s6-rc: info: service fix-attrs successfully stopped
s6-rc: info: service s6rc-oneshot-runner: stopping
s6-rc: info: service s6rc-oneshot-runner successfully stopped
s6-rc: info: service s6rc-oneshot-runner: starting
s6-rc: info: service s6rc-oneshot-runner successfully started
s6-rc: info: service fix-attrs: starting
s6-rc: info: service fix-attrs successfully started

Did you have the “accept terms” option set to true?

In the add on config?

I'm currently not home so I can't use local and I can't log

In

Load the webpage

Then troubleshooting needs to wait until you're home

back home

and it is back online

# INFO: Using main config file /data/workdir/config
 + Creating chain cache directory /data/workdir/chains
Processing radareek.duckdns.org
 + Creating new directory /data/letsencrypt/radareek.duckdns.org ...
 + Signing domains...
 + Generating private key...
 + Generating signing request...
 + Requesting new certificate order from CA...
 + Received 1 authorizations URLs from the CA
 + Handling authorization for radareek.duckdns.org
 + 1 pending challenge(s)
 + Deploying challenge tokens...
OK + Responding to challenge for radareek.duckdns.org authorization...
 + Challenge is valid!
 + Cleaning challenge tokens...
OK + Requesting certificate...
 + Checking certificate...
 + Done!
 + Creating fullchain.pem...
 + Done!13:26:44] INFO: Renew certificate for domains: radareek.duckdns.org and aliases: 
# INFO: Using main config file /data/workdir/config
 + Creating chain cache directory /data/workdir/chains
Processing radareek.duckdns.org
 + Creating new directory /data/letsencrypt/radareek.duckdns.org ...
 + Signing domains...
 + Generating private key...
 + Generating signing request...
 + Requesting new certificate order from CA...
 + Received 1 authorizations URLs from the CA
 + Handling authorization for radareek.duckdns.org
 + 1 pending challenge(s)
 + Deploying challenge tokens...
OK + Responding to challenge for radareek.duckdns.org authorization...
 + Challenge is valid!
 + Cleaning challenge tokens...
OK + Requesting certificate...
 + Checking certificate...
 + Done!
 + Creating fullchain.pem...
 + Done!```

log looks good

but it's still in http

proly becuse i don't have that script in my config file

now i lost it

idk what's wrong

i can't see the server in my app

What did you change?

i set true to duckdns

terms

That's the lets encrypt terms 😉

None of that would cause you to lose access to HA itself though

and than added this to config:

http:
ssl_certificate: /ssl/fullchain.pem
ssl_key: /ssl/privkey.pem

and restarted

after the restart i cano't acces it

Did you remember to use https:// now?

yh

wait

should i use the duckdns url?

Not unless you've set up port forwarding already

Is yh a yes or a no or a ...?

yeah

And did you try with just http://?

im in

https://homeassistant:8123/lovelace/0

Now "all" you have to do is sort out port forwarding so you can connect remotely

Then you can get back to sorting out the Google Assistant integration

but i don't have a certificate, so the app doesn't let me put it in

You're using https:// ...

Without a certificate you can't 😉

So ... yes, you have one

The HA app will also only connect to the hostname in the certificate, your DuckDNS hostname

So... #1237479930393264130 message

https://imgur.com/a/GvmYd6I

Yes ... you have a cert

https://imgur.com/a/7Iqyf2T

Right...

it says cert is not valid

We've covered that before

Let me find the link to save me writing it all out again, and again 😉

#1237479930393264130 message

cool

so i don't have to worry about it

No

ok

so what should i do?

#1237479930393264130 message

Now "all" you have to do is sort out port forwarding so you can connect remotely

#1237479930393264130 message

That second one has the guide you need

https://community.home-assistant.io/t/remote-access-for-home-assistant/206072#port-forwarding-17

this

All of that guide, but yes

all my ports are closed

that i tried

Did you actually forward any yet?

i don't know

FFS

You have to follow the guide step by step, if you're jumping around at random then you're doomed

And you really should know if you've forwarded a port... if you've not opened up your router's admin pages then no, you haven't

If this is all proving too much for you, paying for the Nabu Casa cloud service will be easier 😛

https://tenor.com/view/broke-no-cash-gif-25565154

Then you get to pay attention and go step by step

ok

Or you can keep chasing squirrels...

is Port forwarding safe?

Yes/no/maybe

In itself, security neutral

The question is.... have you secured the thing you're forwarding to?

And that's covered in the guide

what thing?

Home Assistant... what else?

oh

secured with password?

Please

read the guide

Actually take the time to read it, the whole damn thing