Hi
Is it possible to use a custom certificate on gsad?
I have generated a custom one, using my internal CA/CA-intermediate, then concatenated all certificates (root+intermediate+server) into a single .pem file.
But I’m getting:
/opt/gvm/sbin/gsad --listen=0.0.0.0 --ssl-certificate=/opt/gvm/var/lib/gvm/CA/openvas.pem --ssl-private-key=/opt/gvm/var/lib/gvm/private/CA/openvas.key
Starting GSAD version 20.08.0~git-be7b41b78-gsa-20.08
gsad main:WARNING:2020-12-15 12h14.33 utc:1303295: MHD: GnuTLS failed to setup x509 certificate/key: Unknown Subject Alternative name in X.509 certificate.
The certificate is valid, and verifies:
openssl verify -CAfile openvas_server_cachain.pem openvas_server.pem
openvas_server.pem: OK
Is this a limitation of the GSE edition?
Using just the certificate, i.e. without the chain, I don’t get any error but then the certificate is not validated by the browsers.
Thanks.