Modification to omnibus installation

kirk.becker · November 13, 2024, 3:52pm

Summary
Changing the omnibus installation to use internal CA server

We are running mattermost-omnibus on Ubuntu 24.04.1 LTS and our initial install we installed without Let’s Encrypt with the command sudo MMO_HTTPS=false apt install mattermost-omnibus. We would like to now enable the encryption with either Let’s Encrypt or using our internal Certificate Authority. Is the best way to allow this is to make changes is to use mmctl to just change:

The Let’s Encrypt flag to true
Change the Forward80To443 to true
Execute the mmomni reconfigure command?
If we wanted to use our own CA, can we just use openssl to create keys and certificate request for our internal CA for a certificate file and just put the locations of these in the config file and follow steps 2 and 3?

john.combs · November 19, 2024, 6:31pm

Hi Kirk! First off, welcome to the forums! Second, great to see you exploring options for enabling encryption! You can find detailed guidance on configuring custom certificates and Let’s Encrypt in the Mattermost Omnibus documentation. Feel free to follow up here if you have any additional questions!

Topic		Replies	Views
Can Mattermost Omnibus be configured without letsencrypt Troubleshooting	7	2243	September 14, 2023
Unable to Enable HTTPS and Change Port in Mattermost Omnibus Deployment Troubleshooting	6	1295	January 28, 2024
Https on omnibus in different listen port Troubleshooting	1	1045	September 14, 2021
During Omnibus installation Certbot verify configuration failed Troubleshooting	3	256	March 2, 2024
Error during Mattermost Omnibus installation Troubleshooting	2	1059	January 23, 2023

Modification to omnibus installation

Related topics