SystemsGolive
open-menu closeme
Home
About
github linkedin mail rss

  • SELinux Context Mismatch: The Hidden Culprit in LDAP Certificate Renewal

    calendar Jan 28, 2026 · 3 min read · LDAP SELinux SSL/TLS OpenLDAP Certificate Management Linux Security Troubleshooting LDAPS  ·
    Share on: twitter facebook linkedin copy
    SELinux Context Mismatch: The Hidden Culprit in LDAP Certificate Renewal

    An internal LDAP certificate renewal failed due to incorrect SELinux contexts on transferred certificate files. Despite correct permissions and ownership, OpenLDAP couldn't initialise TLS. Using restorecon to fix the security context resolved the issue immediately, highlighting the importance of SELinux context verification in certificate deployments.


    Read More

  • Seamless Production Migration: Moving to Cloudflare Load Balancer

    calendar Nov 23, 2025 · 7 min read · Cloudflare Load Balancer' Migration SSL TLS Certificate Management Zero Downtime  ·
    Share on: twitter facebook linkedin copy
    Seamless Production Migration: Moving to Cloudflare Load Balancer

    Our journey migrating our production care management platform from ANS to Cloudflare Load Balancer—eliminating manual certificate management, resolving security concerns, and achieving a seamless cutover.


    Read More

Mickael Asghar photo

Mickael Asghar

DevOps Engineer with expertise in cloud computing, automation, microservices, networking, and security - ensuring scalable, secure, and resilient IT systems.
Read More

Recent Posts

  • LDAP Service Failure After VM Snapshot – Configuration Mismatch Resolution
  • Pi-hole and Unbound on Raspberry Pi 4: Private DNS and Network-Wide Ad Blocking
  • SELinux Context Mismatch: The Hidden Culprit in LDAP Certificate Renewal
  • Case Study - Automating Let's Encrypt Wildcard Certificates with Cloudflare DNS and Full (Strict) TLS Encryption
  • Seamless Production Migration: Moving to Cloudflare Load Balancer
  • Implementing HTTP/2 with Zero Downtime: A Blue-Green Deployment Case Study
  • A Guide to Generating TLS Ed25519 (Elliptic Curve Cryptography) Certificates Using Private CA
  • MySQL User Profile Creation Guide

Categories

LINUX 4 SECURITY 4 INFRASTRUCTURE 3 TROUBLESHOOTING 3 SYSTEM ADMINISTRATION 2 CI/CD PIPELINES 1 DATABASE 1 DATABASE ADMININISTRATION 1 DEVOPS 1 HOMELAB 1 INCIDENT REPORTS 1 INFRASTRUCTURE MIGRATION 1 INFRASTRUCURE 1 KUBERNETES 1
All Categories
CI/CD PIPELINES1 DATABASE1 DATABASE ADMININISTRATION1 DEVOPS1 HOMELAB1 INCIDENT REPORTS1 INFRASTRUCTURE3 INFRASTRUCTURE MIGRATION1 INFRASTRUCURE1 KUBERNETES1 LINUX4 NETWORKING1 OPERATIONS1 SECURITY4 SITE RELIABILITY ENGINEERING1 SOFTWARE ENGINEERING1 SYSTEM ADMINISTRATION2 TROUBLESHOOTING3
[A~Z][0~9]

Tags

SSL 4 MYSQL 3 TLS 3 ALERT 2 APACHE 2 CERTIFICATE 2 CERTIFICATE MANAGEMENT 2 CLOUDFLARE 2 ENCRYPTION 2 INFRASTRUCTURE 2 LDAP 2 LINUX 2 MONITORING 2 OPENLDAP 2
All Tags
AD BLOCKING1 ALERT2 ALMALINUX1 APACHE2 API1 ARGOCD1 AUTOMATION1 BEST PRACTICES1 CERTIFICATE2 CERTIFICATE MANAGEMENT2 CICD1 CLOUDFLARE2 CONNECTIVITY1 CPU1 CRC321 DEPLOYMENT1 DISKSPACEOPTIMISATION1 DNS1 DNSSEC1 DOCKER1 ED255191 EKS1 ENCRYPTION2 ENVIRONMENT1 FLASK1 GOLANG1 HOMELAB1 HTTP/21 INCIDENT1 INDEX1 INFRASTRUCTURE2 JENKINS1 KUBERNETES1 LDAP2 LDAPS1 LINUX2 LINUX SECURITY1 LOAD BALANCER'1 LOGMANAGEMENT1 LOGROTATE1 METRICS1 MIGRATION1 MONITORING2 MYSQL3 NETWORKING1 OPENLDAP2 PI-HOLE1 PING1 POSTGRESQL1 PRIVACY1 PRIVILEDGES1 RASPBERRY PI1 RECURSIVE DNS1 ROLE-BASES ACCESS PROFILES1 ROUTING1 SELF-HOSTED1 SELINUX1 SERVICE1 SLAPD1 SSH1 SSL4 SSL/TLS1 STRATEGY1 SYSADMIN1 THRESHOLD1 TLS3 TROUBLESHOOTING2 UNBOUND1 USER CREATION1 VM SNAPSHOT1 WEB APPLICATIONS1 WORKBENCH1 ZERO DOWNTIME1
[A~Z][0~9]

© 2026 SystemsGo.live and Mickael Asghar. All rights reserved.

to-top