Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Programmatically provision SSL certificate

Featured Replies

Hey, I'm providing a custom SSL certificate to Unraid and update it with a shellscript.

Still, I need to click the "Provision" button under "Settings -> Management Access" manually:

 

image.png.700a3074b52328ae901dfdc416676724.png

 

How can I invoke the functionality of that button from my shellscript that's running on the server?

Solved by ljm42

  • Community Expert

You don't need to, there's already an autoupdate function built-in.

 

Quote

After an Unraid.net SSL Certificate has been installed, two background services are activated while the server is signed in to unraid.net:

updatedns - This starts 30 seconds after server reboot has completed and contacts the Lime Technology DNS service to register the servers local IP address. Thereafter it wakes up every 10 minutes in case the local IP address has changed.

renewcert - This starts 60 seconds after server reboot has completed and contacts the Lime Technology certificate renewal service to determine if your Unraid.net SSL certificate needs to be renewed. Thereafter it wakes up every 24 hours. If within 30 days of expiration, a new certificate is automatically provisioned and downloaded to your server.

 

  • Author

image.thumb.png.52e808aecf110b1651854fa7f8540b21.png

 

This is the path it shows in the settings UI. I just replace that file with my custom certificate (it has nothing todo with Unraid.net or whatever server they offer), but nothing happens.

Unraid only picks it up when I press "Provision".

 

So I assume that I need to press that button. If there's a better way, please tell me :)

  • Community Expert

Anything Unraid stores in /boot/config is only loaded at boot time, then resides in RAM so it's normal that it doesn't get picked up.

 

It's not clear what the purpose is but it seems you should probably be using a reverse proxy container rather than hijacking this feature.

Edited by Kilrah

  • Solution

The "Provision" button will provision a myunraid.net certificate. There is no need to press it if you are providing your own custom certificate.

 

You can provide your own certificate if you want, but the filename is different. See https://wiki.unraid.net/Manual/Security#Custom_Certificates 

 

So have your shell script put the certificate here:

/boot/config/ssl/certs/[servername]_unraid_bundle.pem

And then run:

/etc/rc.d/rc.nginx reload

 

  • Author

Thank you, that made it!

  • 2 years later...

Hi all, sorry to dig this post back up, but my post with the same question is not getting any responses so hoping to get your advice here.

 

I'm facing issues where my public WAN IP will change courtesy of my ISP. I'm guessing the SSL cert gets invalidated, as it makes it impossible to remotely access my server unless I physically travel to the server (which is offsite), connect locally, and delete the cert and provision a new one.

 

Does the ability to delete and re-provision the certs programmatically exist for such a use case?

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.