Where does it store the WebUI certificate

[Argh123]

I uploaded a lets encrypt ssl to Asus WebUI and it asked for the .cer and .key I wanted to know where does it store it? I SSHed into the router and still could not find it.

 

[slackjaw99]

If you are looking for parameters entered via the web GUI, you'll want to 'inspect' the html source code for 'name' attribute for the parameter entry field, and then ssh into the router and do something like

username$ nvram show | egrep 'key|cert|crt'

where the terms between the ' 's would match what you are looking for. You may need to search for multiple acronyms since the GUI form field names don't necessarily match the nvram keys. On my system (gt-ax6000) it looks like the public key gets stored in sshd_authkeys. You will see the files probably under /tmp/etc but they are auto-generated when the firmware loads on boot so can't be edited unlike nvram vars. Also on my version of ASUS router I'm seeing a cert.tgz file under /jffs/ which contains both cert and key, so this may be editable since /jffs/ is persistent.

 

[XIYO]

I used a translation tool to read the sentence because I'm not an English-speaking user.

The author wants to confirm where the certificate is actually uploaded on the router when uploading a certificate in the `WebUI` -> `WAN` -> `DDNS`.

If that's the intention, it's correct. The certificate is uploaded to `/jffs/.cert`.

 

[Paxsat]

Premetto dicendo che non sono esperto di web e certificati. ho nella rete un rasberry con installato jellyfin. Non ho problemi con http ma vorrei abilitare anche il hptts. Jellyfin mi chiede "il percorso del certificato" .
1) posso usare il "Certificato gratis di Let's Encrypt" del router?
2) se la risposta è positiva come posso indicare il percorso?

I'll start by saying that I'm not an expert on the web and certificates. I have a Raspberry Pi with Jellyfin installed on my network. I have no problems with HTTP but I would also like to enable HPTTS. Jellyfin asks me for the "path to the certificate".
1) Can I use the router's "Free Let's Encrypt Certificate"?
2) If the answer is yes, how can I specify the path?

 

[scootertramp]

I'll start by saying that I'm not an expert on the web and certificates. I have a Raspberry Pi with Jellyfin installed on my network. I have no problems with HTTP but I would also like to enable HPTTS. Jellyfin asks me for the "path to the certificate".
1) Can I use the router's "Free Let's Encrypt Certificate"?
2) If the answer is yes, how can I specify the path?

You can find the cert on the router in /jffs/.le. Afraid you will not be able to re-use on another system as
the certs are using hostname.domain name. Getting another Letsencrypt cert is pretty straight forward using certbot.
If you are using a debian based os on the your pi check out sudo apt info certbot.

 

[Paxsat]

Leggevo che cerbot deve dialogare sulla porta 80, già impegnata (Forwarded) sul router Asus per far leggere il DB alla mia applicazione Android motopark.

I read that cerbot must communicate on port 80, already busy (Forwarded) on the Asus router to allow my Android motopark application to read the DB.

 

[octopus]

Leggevo che cerbot deve dialogare sulla porta 80, già impegnata (Forwarded) sul router Asus per far leggere il DB alla mia applicazione Android motopark.

Only english pls.

 

[scootertramp]

Leggevo che cerbot deve dialogare sulla porta 80, già impegnata (Forwarded) sul router Asus per far leggere il DB alla mia applicazione Android motopark.

I read that cerbot must communicate on port 80, already busy (Forwarded) on the Asus router to allow my Android motopark application to read the DB.

Look into dns challenge. It does not require port forwarding.
https://letsencrypt.org/docs/challenge-types/