Inseego
Inseego
Solutions
Solutions

Mobile 5G internet, remote network management and operational visibility.

5G WWAN & connectivity
5G cloud networking
5G intelligent edge
Products
Products
Products
High performance connectivity devices and management solutions.
5G indoor routers

Plug and play for rapid and cost-effective deployment, without the cables.

5G outdoor CPEs

Bringing fast 5G connectivity to more homes and businesses.

Mobile hotspots

Instant, portable 4G LTE and 5G connectivity with long-lasting battery life.

5G industrial gateways

Ultra reliable, 5G internet for continuous business connectivity.

4G connectivity

Dependable 4G LTE connectivity for business continuity.

Cloud management & networking

Manage and monitor your 4G & 5G devices from anywhere.

GPS fleet tracking

Intelligent fleet management and telematics solutions to increase safety, efficiency for your business.

Industries
Resources
Resources

Explore and learn from insights gained by 25 years working across industries. Find our product user and deployment guides in product documentation.

Industry resources
Product resources
Company
Company

Inseego has been leading the way in wireless technology for 25 years, including inventing the world’s first mobile hotspots.

Getting to know us
News and events
Get in touch

EDGE Manager quick start guide

  1. Product documentation
  2. Inseego 5G SD EDGE™
  3. EDGE Manager quick start guide

Provision SSL certificate

root@myem# mkdir /ssl
root@myem# mkdir /ssl/certs
root@myem# cd /ssl/certs

Commercial or Enterprise CA

Provide CSR to CA.

root@myem# openssl req -newkey rsa:2048 -keyout nginx-selfsigned.key -out nginx-selfsigned.csr
root@myem# cat nginx-selfsigned.csr

Upload signed certificate into /ssl/certs.

Put signed certificate into DER, Base-64 encoded form and save it as nginx-selfsigned.crt.

root@myem# openssl x509 -outform der -in mycert.pem -out nginx-selfsigned.crt

NOTE: You may have to include the root & intermediate certificates.

root@myem# cat caroot.crt cainter.crt mycert.crt > nginx-selfsigned.crt

Let’s Encrypt CA (not recommended for production)

Prepare the host:

root@myem# mkdir /letsencrypt
root@myem# mkdir /root/ssl-letsencrypt
root@myem# nano /root/ssl-letsencrypt/nginx.conf

Paste in these contents and replace the domain “my-em.mydomain.com” with your domain:

user nginx;
worker_processes 1;

error_log /var/log/nginx/error.log warn;
pid /var/run/nginx.pid;
#include /etc/nginx/conf.d/*.conf;
events {
    worker_connections 1024;
}

http {
    include /etc/nginx/conf.d/*.conf;
    include /etc/nginx/mime.types;
    default_type application/octet-stream;

    log_format main '$remote_addr - $remote_user [$time_local] "$request" '
                    '$status $body_bytes_sent "$http_referer" '
                    '"$http_user_agent" "$http_x_forwarded_for"';

    access_log /var/log/nginx/access.log main;
    sendfile on;
    keepalive_timeout 65;

    server {
      listen 80;
      server_name my-em.mydomain.com;

      location /.well-known/acme-challenge/ {
        root /letsencrypt;
      }

      location / {
        gzip off;
        root /usr/share/nginx/html/;
        index index.html;
      }

    }
}

TIP: Use CTRL-O to save, CTRL-X to exit, and Return to accept prompts at the bottom of the screen.

Start NGINX container:

root@myem# docker run -it -d --name nginx -v /root/ssl-letsencrypt/nginx.conf:/etc/nginx/nginx.conf -v /letsencrypt:/letsencrypt -v /letsencrypt/certs:/etc/letsencrypt -p 80:80 -p 443:443 nginx

Obtain Certbot container:

root@myem# cp -r /home/ma-admin/.aws /root/
root@myem# aws ecr get-login-password --region us-west-2 | docker login --username AWS --password-stdin 836891784212.dkr.ecr.us-west-2.amazonaws.com

Start Certbot container’s shell:

root@myem# docker run -it --rm --name certbot -v /letsencrypt:/letsencrypt -v /letsencrypt/certs:/etc/letsencrypt 836891784212.dkr.ecr.us-west-2.amazonaws.com/longship:certbot bash

Request certificate from Let’s Encrypt.

root@randomhexstring# certbot certonly --webroot –webroot-path /letsencrypt --no-eff-email --email [email protected] --domain my-em.mydomain.com

Clean up:

root@myem# exit
root@myem# docker kill nginx
root@myem# docker rm nginx

Copy certificates and key:

root@myem# cd /ssl/certs
root@myem# cp /letsencrypt/certs/archive/*/* ./
root@myem# cp fullchain1.pem nginx-selfsigned.crt
root@myem# cp privkey1.pem nginx-selfsigned.key


In this article
Inseego