I have had limited success with my new Christmas present DS1520+ getting the self-signed SSL to be recognised as ‘fully’ secure on Firefox (v84.0) with your method. It also includes details on installing the certificates on your mobile devices (iOS and Android).įurther resources: If you are making the NAS publicly accessibly over the internet, you can follow Mike Tabor’s guide on using Let’s Encrypt SSL certificates as they are completely free and work perfectly. Now you need to export the newly generated certificates from your Diskstation and import the root CA into your local machine’s certificate store so that they will be recognised as valid.Ĭheck this page to understand how to install certificates system-wide as well as in specific browsers that handle their own certificates. ![]() Once your certificate has been generated click “Configure” in DSM to set the new certificate to be the default for the system (The internal web server will restart) so that when you attempt to load the Diskstation site the correct SSL certificate will be presented to your browser. The Subject Alternative Name (SAN) in the second step must contain BOTH the name of the Disktation on your network (“myDSname”) and its local fixed IP (192.168.1.10) What you fill in is not very important, you can use dummy data if you want.Ĭreating the self-signed certificate from the Synology control panel has a key step that you must complete or the certificate will be invalid. You will need to supply the certificate details. In DSM 6.0 -> Control Panel -> Security -> CertificateĬlick “Add” to start the process and choose “Create self-signed certificate”įirst you create a Certificate Authority (CA) which is the master key that will sign the site usable SSL. If you can satisfy those conditions, proceed with the following steps:
0 Comments
Leave a Reply. |