Could I have a .key and .crt for ssl render autogenerated for me?

Nutchanon_Ninyawee · January 3, 2021, 4:36pm

shantanu · January 6, 2021, 11:53pm

Hi Nutchanon_Ninyawee,

Render automatically provisions SSL certs for custom domains pointing to services on our platform.

You can get the cert using the openssl. Eg:

MYSERVER=abc.example.com -c 'openssl s_client -servername "$MYSERVER" -connect "$MYSERVER":443     </dev/null 2>/dev/null | openssl x509 -text'

I’m assuming that the .key in your question refers to the cert’s private key. Unfortunately, we cannot handover the private key for the certificate.

If my assumption was wrong I’d love to understand your question better.

Nutchanon_Ninyawee · January 7, 2021, 1:54am

You are right. Thank you for your help.

vrchen · April 8, 2023, 3:41am

Does this mean mutual authentication/two-way SSL is not possible for apps hosted on render? It seems that mutual auth requires me to send the .key file along with the .cert file (based on: ssl - is client need its private key in mutual authentication - Stack Overflow)

(I’m trying to follow this: Share My Data for third-party-companies: Testing details)

al_ps · April 12, 2023, 11:28am

Hi,

Correct, mTLS to a Render Web Service isn’t currently possible. Render manages the TLS, which is terminated before the proxy passes the request over HTTP to your instance.

Alan

al_ps · May 12, 2023, 11:26am

This topic was automatically closed after 30 days. New replies are no longer allowed.

Topic		Replies	Views
HTTP/2 and HTTP/3	2	655	July 28, 2022
HELP with a SSL certificate	4	1924	January 26, 2021
SSL Certificate	2	905	February 3, 2024
Disable TLS 1.0 and 1.1	4	468	September 22, 2022
SSL Certificate Pending Issue	1	260	November 1, 2023

Could I have a .key and .crt for ssl render autogenerated for me?

Related Topics