Improved ca instructions
parent
6c8cc75595
commit
d489d96d78
|
@ -3,6 +3,8 @@ title: Installing the CA Certifiacte
|
||||||
layout: base.njk
|
layout: base.njk
|
||||||
---
|
---
|
||||||
|
|
||||||
|
< [Back](/nebuchadnezzar/)
|
||||||
|
|
||||||
# {{title}}
|
# {{title}}
|
||||||
|
|
||||||
Importing GF4's CA certificate is required to use matrix and recommended for https, imap, etc.
|
Importing GF4's CA certificate is required to use matrix and recommended for https, imap, etc.
|
||||||
|
@ -31,27 +33,24 @@ When you import a CA certificate, your platform may display very serious warning
|
||||||
|
|
||||||
**TODO**: Split these into seperate pages
|
**TODO**: Split these into seperate pages
|
||||||
|
|
||||||
For all of these instructions, you'll need to download the certificate from [https://www.gf4.pw/ca.crt](https://www.gf4.pw/ca.crt).
|
|
||||||
|
|
||||||
### Fedora/Arch Linux (or p11-kit)
|
### Fedora/Arch Linux (or p11-kit)
|
||||||
|
|
||||||
[https://wiki.archlinux.org/title/User:Grawity/Adding_a_trusted_CA_certificate](https://wiki.archlinux.org/title/User:Grawity/Adding_a_trusted_CA_certificate)
|
```
|
||||||
|
curl -s www.gf4/ca.crt | trust anchor --store gf4.crt
|
||||||
|
```
|
||||||
|
|
||||||
```
|
**source**: [Arch wiki: User:Grawity/Adding a trusted CA certificate](https://wiki.archlinux.org/title/User:Grawity/Adding_a_trusted_CA_certificate)
|
||||||
curl -s https://www.gf4.pw/ca.crt \
|
|
||||||
| trust anchor --store ca.crt
|
|
||||||
```
|
|
||||||
|
|
||||||
### Debian/Ubuntu
|
### Debian/Ubuntu
|
||||||
|
|
||||||
```
|
Open a terminal and run:
|
||||||
curl -s https://www.gf4.pw/ca.crt \
|
|
||||||
| sudo tee /usr/local/share/ca-certificates/gf4.crt \
|
|
||||||
| sudo tee /etc/ssl/certs/gf4.pem
|
|
||||||
sudo chmod 644 /usr/local/share/ca-certificates/gf4.crt /etc/ssl/certs/gf4.pem
|
|
||||||
```
|
|
||||||
|
|
||||||
Import the certificates into your browser too.
|
```
|
||||||
|
sudo apt-get install -y ca-certificates curl
|
||||||
|
curl -s www.gf4/ca.crt | sudo tee /usr/local/share/ca-certificates/gf4.crt
|
||||||
|
sudo update-ca-certificates
|
||||||
|
```
|
||||||
|
**source**: [Ubuntu server docs: Security trust store](https://ubuntu.com/server/docs/security-trust-store)
|
||||||
|
|
||||||
### Android
|
### Android
|
||||||
|
|
||||||
|
@ -63,7 +62,7 @@ Help wanted
|
||||||
|
|
||||||
### iPhone
|
### iPhone
|
||||||
|
|
||||||
1. Open [https://www.gf4.pw/ca.crt](https://www.gf4.pw/ca.crt) in Safari.
|
1. Open [www.gf4/ca.crt](http://www.gf4/ca.crt) in Safari.
|
||||||
2. Safari will say "*This website is trying to download a configuration profile. Do you want to allow this?*". Tap **Allow**.
|
2. Safari will say "*This website is trying to download a configuration profile. Do you want to allow this?*". Tap **Allow**.
|
||||||
3. Safari will then say "*Review the profile in Settings app if you want to install it.*". Tap **Close**.
|
3. Safari will then say "*Review the profile in Settings app if you want to install it.*". Tap **Close**.
|
||||||
4. Settings -> General -> **VPN & Device Management** -> **gf4** -> **Install**. If you get a warning that complains about this being an *Unmanaged Root Certificate* and *Unverified Profile*, tap **Install** again. You will notice that **Not Verified** in red will turn into **Verified** in green.
|
4. Settings -> General -> **VPN & Device Management** -> **gf4** -> **Install**. If you get a warning that complains about this being an *Unmanaged Root Certificate* and *Unverified Profile*, tap **Install** again. You will notice that **Not Verified** in red will turn into **Verified** in green.
|
||||||
|
@ -71,6 +70,4 @@ Help wanted
|
||||||
|
|
||||||
### Windows
|
### Windows
|
||||||
|
|
||||||
Help wanted
|
Help wanted
|
||||||
|
|
||||||
< [Back](/nebuchadnezzar/)
|
|
Loading…
Reference in New Issue