Differences

This shows you the differences between two versions of the page.

--- pfsense_ssl_install [2025/11/21 12:29] – admin
+++ pfsense_ssl_install [2025/11/21 12:38] (current) – admin
@@ Line 66: / Line 66: @@
   * ntermediate CA (SectigoRSADomainValidationSecureServerCA.crt)\\
   * Root certificate (not needed for pfSense)\\
-\\
 Unzip it.\\
+✅ **STEP 4** — Import certificate into pfSense\\
+. Go to: System → Cert. Manager → Certificates\\
+. Edit the previously generated CSR entry\\
+. Choose: Import certificate\\
+. Paste:\\
+Field  ---------------->  Paste\\
+Certificate data  ---------------->  Contents of yourdomain.crt\\
+Certificate Chain  ---------------->  Paste intermediate cert(s) from the ZIP\\
+Example formatting:\\
+-----BEGIN CERTIFICATE-----\\
+(your domain certificate)\\
+-----END CERTIFICATE-----\\
+\\
+-----BEGIN CERTIFICATE-----\\
+(intermediate certificate)\\
+-----END CERTIFICATE-----\\
+\\
+⚠️ Do NOT paste the private key, pfSense already has it stored since it created the CSR.
+Click Save.
+\\
+✅ **STEP 5** — Configure pfSense / HAProxy to use the certificate\\
+If used for the WebGUI:\\
+System → Advanced → Admin Access → SSL Certificate → select new cert\\
+If used in HAProxy:\\
+Services → HAProxy → SSL Offloading (frontend)\\
+Add → Select your new certificate\\
+\\
+Click Apply and reload.
+\\
+\\
+🚨 **FINAL CHECK**
+\\
+go to:\\
+   https://ssllabs.com/ssltest
+and enter yourdomain.com to verify the chain.
+\\
 That's it!
+\\
+\\
 **Your ArtIT Team**