I’m running Gitlab:13.12.15-ce.0 in docker container with my private ssl certs and key. But it’s expired few days back and i have updated the .crt and .key files in /etc/gitlab/ssl directory but Gitlab still throws error that my certs are expired with loading old certs.
I have tried updating the cert and key file by following Update the SSL Certificates
I followed these steps to configure certs and key initially:manually-configuring-https
How do i load new updated ssl cert in Gitlab ? Thanks in Advance.
3
Answers
So it was actually a load balancer issue, we have configured the old ssl certificate by mistake assuming it's the new ssl certificate. After configuration of new ssl certificate in load balancer it worked as expected.
From SSL settings, you might need to cleanup
/opt/gitlab/embedded/ssl/certs
first, putting your new key in/etc/gitlab/trusted-certs
, and do agitlab-ctl reconfigure
.That should create the expected symlinks in
/opt/gitlab/embedded/ssl/certs
and update your SSL cert used by your GitLab instance..I’m assuming this is already resolved but my suggestion is that nginx wasn’t actually getting restarted. I’ve found that I sometimes have to force an nginx restart for it to pick up the new cert.