Note: These instructions apply only to TinyPilot Pro.
When you first visit TinyPilot over HTTPS, you'll see a privacy error like this:
This error is expected because TinyPilot secures the HTTPS connection using a key that your system doesn't know about yet.
You can ignore the privacy error, but the better fix is to prevent it in the first place.
If you purchased your TinyPilot before Feb. 17th, 2021, update to the latest version of TinyPilot Pro before proceeding. See the insecure CA security advisory for details.
In order for your browser to trust the TinyPilot HTTPS connection, you need to download the TinyPilot device's root certificate and install it on your system. This certificate is secure, as the certificate is unique to your device.
To accept the certificate, follow the instructions below for your operating system:
ca.crt
fileRun the following commands from the terminal:
wget \
--no-check-certificate \
https://tinypilot/ca.crt \
-O tinypilot-ca.crt && \
sudo mkdir /usr/share/ca-certificates/extra && \
sudo cp tinypilot-ca.crt /usr/share/ca-certificates/extra/ && \
sudo dpkg-reconfigure ca-certificates
The last command will display a console UI:
extra/tinypilot-ca.crt
and press the Space key to select itca.crt
fileIf your TinyPilot device's CA private key is ever compromised, you should uninstall the TinyPilot CA certificate from any machine where you added it as a trusted certificate.