NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Status:
Engineering Investigation
Enhancement Request: User-supplied SSL certificates for remote management
There is currently no way to install a proper PKI-chained SSL certificate from a third party like Comodo or StartCom SSL. With all current versions of the NETGEAR firmware, when enabling HTTPS access for remote management, my/all browsers get angry because the R7000 is using a self-signed certificate:
I have a free StartCom SSL cert all generated and ready to install. The problem is, there is no supported way to install this certificate, intermediate cert, and private key, with the R7000.
- Dave
47 Comments
Eight years for investigations - and still nothing in place. Neither on Home nor in the SMB models.
+1
Just bought three (!) WAX610 - no option to install own certificate? Hello?
I understood these are business APs?PeterKaufman "...Unless trust can be proven for the NetGear cert. Can I trust it? I'd rather trust my own self-signed certificate. ..." No, we can't. No decent browser or a modern OS platform allows trusting self-signed certificates - that's history.
- I'm still waiting on this. I use my iPad to control my desktop, and my server while I'm on the road, but I have to use my phone to work around the missing SSL certificate for my router... I look forward to Netgear's response/implementation in 2030!
In this day and age, allowing for ones own PKI certs seems important. Unless trust can be proven for the NetGear cert. Can I trust it? I'd rather trust my own self-signed certificate. I vote for this capability whole heartedly.
Peter
dejiko have not disagreed with anyone here. Of course having the standard features for certificate are badly missing, and Let's Encrypt would be nice to have. My vote is counted of course.
The majority of users never use direct remote access. Without additional services, the users on the LAN won't see an advantage..
BrendanMcCoy Yes, ubiquiti is one of good choice. But unfortunately ubiquiti is not common in my region and I think this is the only advantages for netgear in some region, the consumers has no choice
schumaku Thank you for your opinions. According to this enhancement request, this function is going for the remote management not in a LAN environment. If as you say "majority of consumers don't have this.", why netgear add this remote management function (but come with a insecure environment)? Now netgear router providing this function, and as a consumer I want to use this function, but I want it would be in more secure, so I vote it here and draw netgear attention.
Actually, if this kind of insecure connection is not very important, why the web browsers like chrome/safari always prompt such annoying warning message everytime and you have to click 2 clicks to bypass it even you had connected to the same address many times? I don't think majority of consumers using the remote management function do not need a secure connection, they just don't know there could have a more secure connection.
In conclude, for me and another 106 guys who kudo this post have been waiting for 4 years, this is a essential feature that is regarding to connection security, and strongly recommend netgear could provide a solution.
This consumer does and has moved to ubiquiti products.
