Jeff Hammett
2014-10-01 04:34:51 UTC
I am currently using the OpenVAS 7 demo appliance for some testing.
I my own internal CA that I have installed on all of my computers to avoid SSL cert warnings on internal devices. I would like to use my CA to generate and sign a cert for OpenVAS so that I can avoid the SSL certificate warning.
I tried replacing /usr/local/var/lib/openvas/CA/servercert.pem and /usr/local/var/lib/openvas/private/CA/serverkey.pem with my own certs and that let me use the web interface without SSL errors, but when I tried to start a scan I got the following error:
Operation: Start Task Status code: 503 Status message: Service temporarily down
I replaced the certs with the originals and everything start working ok again.
How can I replace the SSL certs on the OpenVAS appliance with certificates signed by own CA that my browsers trust?
--
Jeff
I my own internal CA that I have installed on all of my computers to avoid SSL cert warnings on internal devices. I would like to use my CA to generate and sign a cert for OpenVAS so that I can avoid the SSL certificate warning.
I tried replacing /usr/local/var/lib/openvas/CA/servercert.pem and /usr/local/var/lib/openvas/private/CA/serverkey.pem with my own certs and that let me use the web interface without SSL errors, but when I tried to start a scan I got the following error:
Operation: Start Task Status code: 503 Status message: Service temporarily down
I replaced the certs with the originals and everything start working ok again.
How can I replace the SSL certs on the OpenVAS appliance with certificates signed by own CA that my browsers trust?
--
Jeff