Running into a strange issue. I followed the self-hosted install guide here: https://documentation.ubuntu.com/landscape/how-to-guides/landscape-installation-and-set-up/quickstart-installation/

I am trying to put it behind my haproxy (via pfSense) to offload SSL there and provide a valid SSL certificate. I have configured haproxy to connect to the Landscape machine’s IP on port 443 with SSL on, but I get the following error when I try to access the URL:

Bad Request

Your browser sent a request that this server could not understand.
Reason: You’re speaking plain HTTP to an SSL-enabled server port.
Instead use the HTTPS scheme to access this URL, please.

Apache/2.4.58 (Ubuntu) Server at landscape.mydomain.com Port 80

Any ideas why it looks like it’s trying to establish a connection on port 80, but also thinks that I’m speaking plain HTTP to an SSL-enabled port? It doesn’t make any sense to me.

I realized this design does not make sense.

Decided to install acme.sh on the Landscape box and do a DNS-01 challenge with my DNS provider to get valid SSL on the server and forgo the offloading on HAproxy.

I have the same issue but would prefer to have Haproxy continue to validate SSL with the wildcard certificate as it does for all of my other sub-domains. How can I allow a simple port 80 access to the landscape server once Haproxy validates the https request?