Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 | 5 | 6 | 7
1697 posts

Uber Geek
+1 received by user: 208

Subscriber

  Reply # 1700430 9-Jan-2017 09:33
Send private message quote this post

michaelmurfy:

 

CYaBro:

 

@michaelmurfy Will you write a guide on how to create and install the letsencrypt cert on the unifi controller? :)

 

 

Sure. I did it at around 2am but essentially what happens is I have the certbot script that runs to updates the NGINX SSL certificate which invokes another script to put that same certificate into the Java cert store and restarts the UniFi controller. It was a script I found on Github Gist but was quite easy to get up and running.

 

 

I'd love to see this guide too! I've got a unifi controller on a linux VM and was going to use StartSSL as I've got some of my sub left over with them but given their owners recent issues and the browser groups considering blocking their SSLs I would rather move to another public CA and lets encrypt seems rather good to me!


3419 posts

Uber Geek
+1 received by user: 694

Trusted

  Reply # 1700465 9-Jan-2017 10:44
Send private message quote this post

Thanks to this thread, i decided to see if unRAID had a docker image for ubiquiti, and sure enough it does.  so quickly added that and yeah, a lot easier than tying to remember which computer I installed the software on :)


 
 
 
 




Mr Snotty
8522 posts

Uber Geek
+1 received by user: 4419

Moderator
Trusted
Lifetime subscriber

1697 posts

Uber Geek
+1 received by user: 208

Subscriber

  Reply # 1700500 9-Jan-2017 13:00
Send private message quote this post

michaelmurfy:

 

@CYaBro @Benoire Here is a quick guide on my blog: https://murfy.nz/2017/01/ubiquiti-unifi-secure-installation/

 

 

Thank you so much!  Will have a go at this later, be good to get rid of the annoying cert errors.


3046 posts

Uber Geek
+1 received by user: 305


  Reply # 1700509 9-Jan-2017 13:23
Send private message quote this post

michaelmurfy:

 

@CYaBro @Benoire Here is a quick guide on my blog: https://murfy.nz/2017/01/ubiquiti-unifi-secure-installation/

 



 

And thank you from me!


1697 posts

Uber Geek
+1 received by user: 208

Subscriber

  Reply # 1700571 9-Jan-2017 16:41
Send private message quote this post

@michaelmurfy should the domain that replaces example.org be FQDN e.g. unifi.domain.com or does it attach itself to the hostname?  In simple terms should I replace domain.org with unifi.domain.com or just domain.com?

 

Thanks,

 

Chris




Mr Snotty
8522 posts

Uber Geek
+1 received by user: 4419

Moderator
Trusted
Lifetime subscriber

  Reply # 1700572 9-Jan-2017 16:47
One person supports this post
Send private message quote this post

Benoire:

 

Should the domain that replaces example.org be FQDN e.g. unifi.domain.com or does it attach itself to the hostname?  In simple terms should I replace domain.org with unifi.domain.com or just domain.com?

 

 

 

 

 

 

Either 127.0.0.1:8443 or unifi.example.org:8443 - as long as nginx knows where it is looking you'll be fine. I normally do my configurations so they can be moved to any machine with little or hardly any additional configuration needed.





3046 posts

Uber Geek
+1 received by user: 305


  Reply # 1700947 10-Jan-2017 15:10
Send private message quote this post

@michaelmurfy Do you know what's the best way to move a couple of unifi devices from an onsite controller to my cloud controller?

 

Don't want to lose any of the current settings.


3046 posts

Uber Geek
+1 received by user: 305


  Reply # 1701592 11-Jan-2017 18:30
Send private message quote this post

michaelmurfy:

 

Here is a quick guide on my blog: https://murfy.nz/2017/01/ubiquiti-unifi-secure-installation/

 

 

I just realised that my cloud controller is running on Ubuntu 14.04, will the instructions be the same?


106 posts

Master Geek
+1 received by user: 39


  Reply # 1701715 11-Jan-2017 21:37
Send private message quote this post

Big thanks to michaelmurfy for setting this up. Makes keeping an eye on the network so much easier, especially when I don't have a PC on all the time.
Only real problem now is that I want to upgrade my old Netgear WNDR3700 running dd-wrt to a USG router.



Mr Snotty
8522 posts

Uber Geek
+1 received by user: 4419

Moderator
Trusted
Lifetime subscriber

  Reply # 1701730 11-Jan-2017 22:28
Send private message quote this post

@CYaBro Ubuntu 14.04 doesn't have the LetsEncrypt package in the repository so you'll need to install this manually. There is a guide on https://certbot.eff.org/#ubuntutrusty-nginx on how to do this. Otherwise you can freely run a dist-upgrade to bring this up to Ubuntu 16.04. 





3046 posts

Uber Geek
+1 received by user: 305


  Reply # 1705111 18-Jan-2017 10:46
Send private message quote this post

test

 

Hmmm geekzone won't let me post something, I keep getting blocked, just trying to figure out what it is.

 

@michaelmurfy

 

I've got my server upgraded to 16.04.1 and following through your guide but getting stuck at the command where you say to run after "Next, tell the Certbot tool to grab a certificate for your site:"

 

It tells me that it cannot connect to the site.

 

I've opened ports 80 & 443 on the firewall and the Unifi controller itself is working fine on its ports so not sure where I'm going wrong?!

 

Also I had to remove the /default/ part from the webroot-path in that command as that folder doesn't exist on my server.

 

 


2714 posts

Uber Geek
+1 received by user: 241

Trusted
Subscriber

  Reply # 1705112 18-Jan-2017 10:47
Send private message quote this post

CYaBro:

 

test

 

 

 

 

It works!





Check out my LPFM Radio Station at www.thecheese.co.nz cool


5407 posts

Uber Geek
+1 received by user: 1872


  Reply # 1705115 18-Jan-2017 10:57
Send private message quote this post

You is using the bad words


3046 posts

Uber Geek
+1 received by user: 305


  Reply # 1705116 18-Jan-2017 10:58
Send private message quote this post

RunningMan:

 

You is using the bad words

 

 

It didn't like me trying to post a linux command line. :)


1 | 2 | 3 | 4 | 5 | 6 | 7
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

NZ and France seek to end use of social media for acts of terrorism
Posted 24-Apr-2019 12:13


Intel introduces the 9th Gen Intel Core mobile processors
Posted 24-Apr-2019 12:03


Spark partners with OPPO to bring new AX5s smartphone to New Zealand
Posted 24-Apr-2019 09:54


Orcon announces new always-on internet service for Small Business
Posted 18-Apr-2019 10:19


Spark Sport prices for Rugby World Cup 2019 announced
Posted 16-Apr-2019 07:58


2degrees launches new unlimited mobile plan
Posted 15-Apr-2019 09:35


Redgate brings together major industry speakers for SQL in the City Summits
Posted 13-Apr-2019 12:35


Exported honey authenticated on Blockchain
Posted 10-Apr-2019 21:19


HPE and Nutanix partner to deliver hybrid cloud as a service
Posted 10-Apr-2019 21:12


Southern Cross and ASN sign contract for Southern Cross NEXT
Posted 10-Apr-2019 21:09


Data security top New Zealand consumer priority when choosing a bank
Posted 10-Apr-2019 21:07


Samsung announces first 8K screens to hit New Zealand
Posted 10-Apr-2019 21:03


New cyber-protection and insurance product for businesses launched in APAC
Posted 10-Apr-2019 20:59


Kiwis ensure streaming is never interrupted by opting for uncapped broadband plans
Posted 7-Apr-2019 09:05


DHL Express introduces new MyDHL+ online portal to make shipping easier
Posted 7-Apr-2019 08:51



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.