SSL cert installation in GCP
Greetz all,
New DSS user here. I got DSS working in my GCP, free edition deployed from GCP marketplace. It's currently running on a single VM and I can access the UI via public IP (GCP provided static IP). I've pointed a domain name I had registered to this public IP and if I browse to: https://my_domain_name.com DSS shows the login page as expected. What I am trying to get rid of now is the SSL warning I get in Chrome (site not trusted etc). I already bought a full SSL cert and have it downloaded (.key file and .cer file) and even went so far as to put them in my DSS data directory and updated install.ini to reflect the location. I have restarted dss too. Still get the SSL warning (but still can bypass it and login to DSS). Any pointers please?
Operating system used: Linux
Answers
-
Turribeach Dataiku DSS Core Designer, Neuron, Dataiku DSS Adv Designer, Registered, Neuron 2023 Posts: 2,123 Neuron
Exactly what warning do you get in Chrome?
-
Hello,
I assume you followed these steps, since you're accessing your DSS instance via https://my_domain_name.com
As you can see, you need to configure this reverse proxy with your SSL certificate and associated private key. You don't have to add anything to the install.ini file in the DSS data directory.
-
I'm getting certificate not valid as the error, but in Chrome I can choose advanced and opt to still browse to the site.
-
I did not do anything from those steps, but yes out of the box GCP install and I am able to connect using https://etc (with no explicit port :port) appended. I assume this means a reverse proxy must be installed already (by default) which I'll check now.
-
I can't even find those SSL related reverse proxy settings on my DSS box, what config file are they in?
-
That's an example configuration file for nginx, to set it up as a reverse proxy to redirect traffic to DSS. By default, the configuration file is named nginx.conf and placed in the directory /usr/local/nginx/conf, /etc/nginx, or /usr/local/etc/nginx.