Hi everyone. I’ve been stumped on this for months and haven’t found any solution. I’m trying to get GitLab to generate a 4096 bit RSA key when used for nginx HTTPS. When you install the GitLab package it defaults to 2048 bit RSA. I changed this in /etc/gitlab/gitlab.rb
letsencrypt['key_size'] = 4096
But whenever I run
gitlab-ctl reconfigure or
gitlab-ctl renew-le-certs after changing that it just generates a new 2048 bit RSA key. It doesn’t really make any sense to me… I’m thinking it has to do with the cookbook, but I’m out of ideas on how to solve the issue. I’ve also tried removing the certificates and keys in /etc/gitlab/ssl, nothing works.