Cannot log in using HTTPS

I’m sure this is a dumb question, but…here goes.

Just clean-installed SCALE. I try to login using either ‘truenas.local or the direct address (192.168.xxxx) and have selected secure redirect. I get the “Not secure” error with https:\ lined out in red. I am able to log in, just not securely. FWIW, the same thing happens with my Synology NAS, too, so I think its a “my network setup” issue, not a TrueNAS issue.

I’ve played around with certificates, imported the truenas_default certificate into Windows (which is good until 1/7/2027) but don’t know enough about network security to figure it out. Tried searches, but no success. Which indicates that my issue is probably so simple that no one else is confused.

Thanks!

It sounds like it could be a browser issue - some browser/setting combinations really don’t want you to log in without a “valid” certificate

Are you planning to use a “proper” certificate or do you just want to bypass the warning?

I get the same results with Brave, Chrome, Firefox and Edge. I can bypass the warning by choosing HTTP login, but I’d like to understand the problem and hopefully fix it. So, I guess, “proper” is the answer.

Thanks!

well, that might be overkill, but you’d need to issue a certificate from a CA for a domain to do it “properly”
You’ll get warnings from your browser with a self signed cert, Chrome (and derivatives) can be funny about blocking access if the certificate isn’t seen as valid.

Do you have a domain to get a certificate for?

If this is a home network then it’s probably overkill and you can just ignore the certificate warnings

If you’re interested in pursuing this, then have a look at Managing Certificates | TrueNAS Documentation Hub

Thanks. I actually have several domains but will investigate and see if it’s worth the trouble. Thanks!

I’ve not got around to testing this yet, so can’t offer advice on how to do this - but mkcert might be a viable option for you?

Good luck - I’d be interested in how you get on with that

Help: Web Interface HTTP → HTTPS Redirect
Redirect HTTP connections to HTTPS. A GUI SSL Certificate is required for HTTPS. Activating this also sets the HTTP Strict Transport Security (HSTS) maximum age to 31536000 seconds (one year). This means that after a browser connects to the web interface for the first time, the browser continues to use HTTPS and renews this setting every year.

So to use this option you will need a fully qualified domain ssl certificate.

If you leave the option unchecked then you can use the self signed certificate and in the browser accept the warning and “authorize anyway” option.

So you are using HTTPS. It isn’t “secure” because one or more of these is true:

• The certificate is expired (unlikely if you just installed SCALE)
• The cert issuer isn’t trusted by your client OS
• The name on the cert doesn’t match the name you’re using to access your server

This is completely idiotic behavior on TrueNAS’ part.

While it’s not for me, maybe TrueNAS Connect is a product that would fill your need.

The current Managing Certificates | TrueNAS Documentation Hub has details on how it helps you handle basic certificate needs if all you really want is to get rid of the SSL warning. (the previously linked Manage Cert-page is to an old one that lacks information about TN Connect)