with the latest stable snap version of lxd (2.21) I wanted to use a let’s encrypt generated certificates on my lxd server.
Let’s encrypt provides me with:
cert1.pem
chain1.pem
fullchain1.pem
privkey1.pem
I replaced the server.crt (chain1.pem) and the server.key (privkey1.pem) with the one I got from the let’s encrypt service certbot.
Now it seems that LXD deamon complains about this since there is a missmatch with the public key…
Where is this match occuring, where is the pubkey located?
I think I can overwrite this as well: openssl rsa -in privkey1.pem -pubout -out pubkey.pem
I think this has to do with the certificate that it is saved on your directory which is checked against the one in the LXD server. Maybe you can cleanup the certificates at ~/.config/lxc/servercerts and try to use the lxc command again