I have read a few threads discussing this topic, since this was still as Astaro product. Why on earth doesn't the UTM support intermediate certificates for use on the user portal and web admin pieces (and mail portal, but I don't use that)?
Having not seen the previous threads because I had not properly identified the issue, I spent several hours concatenating certs in different orders, different certs, etc., only to find out this was only an issue with those pieces. WAF using the certificate works great in all browsers (IE, Edge, Chrome, Firefox current versions). All browsers except Firefox work in the WebAdmin stuff as well. Firefox still complains because of the missing intermediate certificate on admin pages and will not fill in the gaps itself as the others browsers do. However, if I add the intermediate certificate to the browser, it works fine. But, if I wanted to do that to every machine I might own, why not just use the built in CA/self-signed cert?
In the end, the WAF pages were intended to be the main focus anyhow, the web admin site was just easier for testing internally. Had I thought that *might* be the issue and tested sooner, I would have gained some hours back, but who would have thought???
I saw a work-around to use the WAF to server the admin pages, but I have not been able to make that work. Again, it is home use, and I rarely need to get into the user portal and administer the firewall from inside only. It is just an annoyance at this point. If anyone has any technical reason why this would not be possible, please let me know. Otherwise, this just falls into the odd things the UTM does category I guess.
This thread was automatically locked due to age.