Teleport Web TLS certificates: no PEM data found


#1

Ported from support chat

I’m getting error when providing letsencrypt certificates for web proxy:

teleport[23054]: error: no PEM data found

my teleport conf section with the cert files:

https_key_file: /etc/ssl/lets-encrypt/lets-encrypt.key
https_cert_file: /etc/ssl/lets-encrypt/lets-encrypt.crt

#2

The solution is similar to the one in letsencrypt support forum

If you obtained the wildcard certificate using certbot you should have 4 files:

Domain cert /etc/letsencrypt/live/domain/cert.pem
Intermediate cert /etc/letsencrypt/live/domain/chain.pem
Concatenation of cert.pem and chain.pem /etc/letsencrypt/live/domain/fullchain.pem
Private Key /etc/letsencrypt/live/domain/privkey.pem

Map those values to Teleport’s https_key_file and https_cert_file appropriately:

https_key_file: /etc/letsencrypt/live/domain/privkey.pem
https_cert_file: /etc/letsencrypt/live/domain/fullchain.pem