TLS/SSL (HTTPS)

LogCraft is only accessible through SSL/HTTPS.

Generate a self-signed certificate

During installation, LogCraft automatically creates a self-signed certificate using the server’s IP address and fully qualified domain name (FQDN).

To regenerate the certificate, run:

bash

logcraft ssl generate

INFO

This command overwrites any existing certificate in LOGCRAFT_HOME/tls/.

View currently installed certificate

The details of the currently installed TLS/SSL certificate can be displayed with:

bash

logcraft ssl view

Installing a custom TLS certificate

To use a certificate issued by your CA/PKI infrastructure, replace the following files with your own certificate and key:

LOGCRAFT_HOME/etc/tls/cert.pem
LOGCRAFT_HOME/etc/tls/key.pem

After replacing the files, restart LogCraft to apply the changes:

bash

systemctl restart logcraft

Change Certificate Location

Although not recommended, you can change the location of the TLS key and certificate by editing LOGCRAFT_HOME/etc/logcraft.conf and adjusting the cert_file and key_file parameters:

toml

[tls]
cert_file = "/opt/logcraft/etc/ssl/cert.pem"
key_file = "/opt/logcraft/etc/ssl/key.pem"

TLS/SSL (HTTPS) ​

Generate a self-signed certificate ​

View currently installed certificate ​

Installing a custom TLS certificate ​

TLS/SSL (HTTPS)

Generate a self-signed certificate

View currently installed certificate

Installing a custom TLS certificate