Disabling https
Gunnar Mills
gmills at linux.vnet.ibm.com
Thu Jun 1 05:55:40 AEST 2023
On 5/26/2023 11:21 AM, hamid amirrad wrote:
> I have built an openbmc image for ast2500 module but i am really having
> a hard time accessing it via REST or web. Both of them fail with ssl
> certificate even when I try to import the server.pem from the BMC module
> into my browser or use --insecure for my curl.
>
> Can you guys guide me on how to disable the https so i can just access
> my module via REST and web?
>
What is the exact error? bmcweb will generate a self-signed certificate
if it doesn't find a usable one.
https://github.com/openbmc/bmcweb/blob/13451e3913c29bb380ef6778f11749d337ddd442/README.md?plain=1#L72
If a web user interface is enabled, it can be accessed at "https://<bmc
ip address>".
https://github.com/openbmc/bmcweb/blob/master/meson_options.txt#L71
You will need to accept/proceed with the certificate warning in your
browser if the certificate is self-signed.
Lastly, you can disable SSL via
https://github.com/openbmc/bmcweb/blob/master/meson_options.txt#L270
A lot of times, this is done in conjunction with setting the port to 80,
https://github.com/openbmc/bmcweb/blob/master/meson_options.txt#L230 and
additionally disabling insecure-disable-auth
https://github.com/openbmc/bmcweb/blob/master/meson_options.txt#L278.
These options should not be used for production systems.
Gunnar
More information about the openbmc
mailing list