This repository was archived by the owner on Feb 13, 2023. It is now read-only.
This repository was archived by the owner on Feb 13, 2023. It is now read-only.
Regenerate included self-signed SSL certificate with less than 825 day validity period #2001
Description
Issue Type
- Bug Report / Support Request
Your Environment
$ vagrant --version && echo "VirtualBox `vboxmanage --version`" && ansible --version
Vagrant 2.2.6
VirtualBox 6.0.14r133895
-bash: ansible: command not found
Your OS
- macOS (Catalina 10.15.2)
Summary
Make sure DrupalVM self-signed SSL certificate meets latest Apple MacOS requirements/constraints from Catalina (https://superuser.com/a/1492657). Catalina now requires that SSL certificates issued after 7/1/2019 include the following constraints:
- The ExtendedKeyUsage extension must be present, with the id-kp-ServerAuth OID.
- The validity period may not be longer than 825 days.
I'm pretty sure my issue is due to the validity period going till 2029, much longer than 825 days, but I didn't know how to check for the other constraint listed above. The error Chrome throws is NET::ERR_CERT_REVOKED and it doesn't allow you to pass the certificate error screen with an exclusion. But the typing thisisunsafe trick works.