-
Notifications
You must be signed in to change notification settings - Fork 392
CloudBeaver SSL certificate configuration
dbeaver-devops edited this page Dec 4, 2024
·
4 revisions
The instance contains an Nginx proxy server, the configuration of which is located at path /etc/nginx/conf.d/cloudbeaver.conf
To set up a connection via HTTPS with domain:
- You need to create or buy a valid TLS certificate for your domain endpoint.
- After you get SSL certificate for your domain you must put it to
/etc/nginx/ssl/fullchain.pem
as certificate and/etc/nginx/ssl/privkey.pem
as a private key. - Change
server_name _;
in configuration/etc/nginx/conf.d/cloudbeaver.conf
toserver_name <your-domain>;
- Enter in terminal
sudo systemctl reload nginx.service
to reload Nginx proxy - Now you can open your
CloudBeaver Server
from the browser using your domain address.
Self-signed certificates are considered insecure for the Internet. Firefox will treat the site as having an invalid certificate, while Chrome will act as if the connection was plain HTTP
You can create self-signed certificate for <your-domain>
by running the following script in the terminal:
SECRET_CERT_CSR="/C=US/ST=NY/L=NYC/O=CloudBeaver /OU=IT Department/CN=<your-domain>"
cd /etc/nginx/
mkdir ssl
cd ssl
sudo openssl req -x509 -sha256 -nodes -days 36500 -subj "$SECRET_CERT_CSR" -newkey rsa:2048 -keyout privkey.pem -out fullchain.pem
- Application overview
- Demo Server
- Administration
- Server configuration
- Create Connection
- Connection Templates Management
- Access Management
-
Authentication methods
- Local Access Authentication
- Anonymous Access Configuration
- Reverse proxy header authentication
- LDAP
- Single Sign On
- SAML
- OpenID
- AWS OpenID
- AWS SAML
- AWS IAM
- AWS OpenId via Okta
- Snowflake SSO
- Okta OpenId
- Cognito OpenId
- JWT authentication
- Kerberos authentication
- NTLM
- Microsoft Entra ID authentication
- Google authentication
- User credentials storage
- Cloud Explorer
- Cloud storage
- Query Manager
- Drivers Management
- Supported databases
- Accessibility
- Keyboard shortcuts
- Features
- Server configuration
- CloudBeaver and Nginx
- Domain manager
- Configuring HTTPS for Jetty server
- Product configuration parameters
- Command line parameters
- Local Preferences
- API
-
CloudBeaver Community
-
CloudBeaver AWS
-
CloudBeaver Enterprise
-
Deployment options
-
Development