http://forum.synology.com/wiki/index.ph ... rtificates
After an initial error about "can't open config file: /usr/syno/ssl/openssl.cnf" when doing step 2 of the certificate authority key (which I solved by downloading the latest openssl and putting the openssl.cnf file in the relevant directory, I completed all the steps. Only real thing I noticed that it forced me to enter a passphrase.
After rebooting the NAS as per instruction I ran a check of the new certificate with sslshoppers ssl checker:
obfuscated.dyndns.org resolves to xx.xx.xx.xx
The certificate will expire in 3649 days. Remind me
The hostname (obfuscated.dyndns.org) is correctly listed in the certificate.
The certificate is self-signed. Users will receive a warning when accessing this site unless the certificate is manually added as a trusted certificate to their web browser. You can fix this error by buying a trusted SSL certificate
This all seemed great (it is picking up all the right info) but when I try to browse to https://obfuscated.dyndns.org (should be the SSL encrypted web station) in firefox 7 I get:
Secure Connection Failed
An error occurred during a connection to obfuscated.dyndns.org.
Peer's certificate has an invalid signature.
(Error code: sec_error_bad_signature)
and in Internet Explorer 9:
There is a problem with this website's security certificate.
Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.
We recommend that you close this webpage and do not continue to this website.
Click here to close this webpage.
Continue to this website (not recommended).
(continue to this website does nothing).
I have installed the ca.crt as per the instructions and imported the certificate into the trusted certificate list in firefox, but no joy.
The non-ssl webstation still works fine.
Can anyone advise?