Reference

new ssl ca-file

Available since

  • HAProxy 2.5
  • HAProxy Enterprise 2.5r1

Create a new empty CA file.

Description Jump to heading

Create a new empty CA file. This file can be filled with CA certificates using set ssl ca-file (and as of version 2.7r1, add ssl ca-file) before being committed with commit ssl ca-file and then added to a crt-list with add ssl crt-list.

Examples Jump to heading

Create CA file intermediate-ca.crt and then list it using show ssl ca-file.

bash
echo -e "new ssl ca-file intermediate-ca.crt" | \
sudo socat stdio tcp4-connect:127.0.0.1:9999
bash
echo -e "new ssl ca-file intermediate-ca.crt" | \
sudo socat stdio tcp4-connect:127.0.0.1:9999
output
bash
New CA file created 'intermediate-ca.crt'!
output
bash
New CA file created 'intermediate-ca.crt'!
bash
echo "show ssl ca-file" | \
sudo socat stdio tcp4-connect:127.0.0.1:9999
bash
echo "show ssl ca-file" | \
sudo socat stdio tcp4-connect:127.0.0.1:9999
output
bash
# filename
/etc/hapee-2.8/combined-ca.crt - 2 certificate(s)
@system-ca - 124 certificate(s)
intermediate-ca.crt - 0 certificate(s)
output
bash
# filename
/etc/hapee-2.8/combined-ca.crt - 2 certificate(s)
@system-ca - 124 certificate(s)
intermediate-ca.crt - 0 certificate(s)

See also Jump to heading

If this page was useful, please, Leave the feedback.