• Cacti Monitoring Tool
  • Documentation
  • Forums
  • Cacti Monitoring Tool
latest version: 1.2.11
  • View Release Notes
  • Download Cacti
  • Download Spine
  • User Community
  • Documentation
  • Information
    • What is Cacti?
    • Features
    • CHANGELOG
  • Downloads
    • Cacti
    • Spine
  • Development
    • Support Cacti
    • Report an issue
    • GitHub
  • Support
    • Documentation
    • Forums
    • Mailing Lists
    • FAQ
  • Spine
    • Information
    • Changelog
Cacti: The complete RRDTool-based graphing solution.

Configuring and enabling SSL for Cacti with a self signed certificate

Enabling SSL for Cacti is mostly done at the webserver level. An example SSL config for Http is as follows:

yum install -y mod_ssl -y
openssl genrsa -out ca.key 2048
openssl req -new -key ca.key -out ca.csr
openssl x509 -req -days 700 -in ca.csr -signkey ca.key -out ca.crt
cp ca.crt /etc/pki/tls/certs
cp ca.key /etc/pki/tls/private/ca.key
cp ca.csr /etc/pki/tls/private/ca.csr

Then we need to update the Apache SSL configuration file:

vi +/SSLCertificateFile /etc/httpd/conf.d/ssl.conf
SSLCertificateFile /etc/pki/tls/certs/ca.crt
SSLCertificateKeyFile /etc/pki/tls/private/ca.key

Restart the httpd service:

systemctl restart httpd

After configuring the web server to accept https, you can enable https in the GUI

Note: if using multiple pollers, all must have HTTPS enabled for the remote polling feature to work properly.

Note: If your Cacti system is public, it is recommended to get a certificate from a trusted certificate provider.

Copyright (c) 2004-2024 The Cacti Group

   
  Copyright  © 2004-2020 The Cacti Group, Inc. - Cacti is the registered trademark The Cacti Group, Inc.

PHP      RRDTool