Channels
android_tests
apple-silicon
arm-architecture
auditing-warroom
aws
carving
code-review
community-feeds
core
darkbytes
doorman
ebpf
eclecticiq-polylogyx-extension
extensions
file-carving
fim
fleet
fleet-dev
fleetosquery
foundation
fuzzing
general
golang
goquery
infrastructure
jobs
kolide
linen-dev
linux
macos
officehours
osctrl
plugins
process-auditing
querycon
queryhub
random
selfgroup
sql
tls
uptycs
vendor-feeds
website
windows
zeek
zentral
zercurity
Title
m
Michael Cervantez
05/14/2019, 10:13 PMHey guys is there a known issue with using letsencrypt certificates with Kolide Fleet?
z
zwass
05/14/2019, 10:14 PMMany folks have done so successfully
m
Michael Cervantez
05/14/2019, 10:14 PMAh ok probably doing something wrong then
z
zwass
05/14/2019, 10:15 PMDoes the CN on the cert match the hostname osquery is using?
m
Michael Cervantez
05/14/2019, 10:18 PMIt does which is bizarre
g
groob
05/14/2019, 10:22 PMmake sure you’re starting fleet with any required intermediary/roots in the .pem file
not just the leaf
(if you follow the same instructions for fleet as you would with nginx you’ll be good)
👍 1
j
Jams
05/15/2019, 1:20 AMAdd the TrustID X3 Root to the fullchain.pem generated by Let’s Encrypt. Details here: https://letsencrypt.org/certificates/
m
Michael Cervantez
05/15/2019, 3:10 AMThank you that solved the issue