Existing certificate - root ca issue

Ask the Community Password Manager
,
1

Hello,

I have installed BW on-prem (Linux) and use an existing certificate.

The certificate chain looks like this when inspecting the certificate.crt:

  • Offline Root
    • Enterprise Root
      • certificate.crt

Which is correct.

Now when I load the BW login page, it gives me the untrusted “x” at the https portion (page loads though and I can login) Upon inspecting the same certificate.crt as above, but via the browser inspection on the Bitwarden page, it shows:

  • Enterprise Root
    • certificate.crt

The Offline Root is missing from the chain.

Any ideas why? Both the Offline Root and Enterprise Root have been installed/imported on the BW machine.

Thanks,

2

Resolved.

  • .key file needed to be decrypted.
  • .pem CA had to be installed by running ‘dpkg-reconfigure ca-certificates’ (update-ca-certificates did not do the trick).
  • The actual certificate was a .cer file and just renaming it to .crt broke it. It had to be properly converted from .cer to .crt with Openssl
3

Hi
i cant understand how to obtain the root CA certificate. it seems your solution can help me. can you give a more detailed solution?