Jump to content

Remote Connection Question


Go to solution Solved by Luke,

Recommended Posts

Posted

Is it possible to make the server reject remote access if the certs have expired (or do not exist)?
I thought that would be caused by "Secure connection mode" being "Required for all remote connections".. but maybe that just means remote connections have to be over the ssl port?

Thanks

Posted

HI, which certificate do you mean?

Posted

The ssl certificate that you use in the network settings in emby.

Posted

It is up to the client to determine if it trusts all aspects of the certificate being presented by the server. A server can present a certificate that is expired, as long as it has a valid certificate and key pairing. If the certificate is expired client apps will not connect, and even the web app depending on your browser settings may not enable you to load the site with an expired certificate. From my understanding if the certificate pair isn't valid (or doesn't exist) then it can't start the HTTPS listener, so it wouldn't listen on that port which would effectively reject traffic.

Posted

Ah so loading through the browser for an expired cert is more to do with the browser(client) than the server? That makes sense.

 

And official emby client apps will not connect if the cert is expired?

 

Thanks for the help!

  • Solution
Posted
17 minutes ago, GuyBee said:

And official emby client apps will not connect if the cert is expired?

 

Thanks for the help!

This could vary per platform because http requests are sent using the device's networking layer and so it just depends on how it will handle that situation. But I would expect most to reject it.

Posted

Appreciate the help team. Thanks so much!

  • Thanks 1

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...