Automate Local TLS Certificates With Step-CA

As useful as OpenSSL has been for letting me manage TLS certificates for internal IT devices, after a while this becomes time consuming and tedious

For one thing, there’s a few a steps to go through to create a certificate and just before a certificate expires you have to go through more steps to revoke the certificate and then create a new one

Now while Let’s Encrypt allows you to automate certificate provisioning, you’d need a public domain name and be willing to leak details about your internal devices to the Public Internet. In other words, it’s a bad idea

So wouldn’t it be good if you could have the security benefit of OpenSSL and the automation benefit of Let’s Encrypt

Well you can with an open source certificate authority called step-ca

Not only can you install this on an internal computer, it supports ACME provisioning

And in this video we’ll go over how to install and configure step-ca as well as demonstrate how to configure Proxmox VE to use it

=============================
SUPPORT THE CHANNEL
Donate through Paypal:

Donate through Buy Me A Coffee:

Become a monthly contributor on Patreon:

Become a monthly contributor on YouTube:

==============================

=============================
MY RECORDING HARDWARE:
Blue Yeti USB Microphone

Blue Radius III Custom Shockmount for Yeti and Yeti Pro USB Microphones

RØDE PSA1 Professional Studio Arm

Aokeo Professional Microphone Pop Filter

Sony Alpha ZV-E10L Mirrorless Camera

Elgato Cam Link 4K Capture Card

Neewer NP-FW50 Dummy Battery Charger Kit

Elgato Key Light Air – Professional 1400 lumens Desk Light

Neewer 2 Packs Tabletop LED Video Light Kit

Elgato Green Screen

=============================

==============================
MEDIA LINKS:
Website –
Twitter –
==============================

For more technical information, including commands used, check out our blog post

Useful links:

Chapters
00:00 Intro
01:05 Assumptions
01:21 Initial Setup
08:52 Password File
11:34 Bootstrapping and Testing
14:37 ACME Server Provisoner
16:23 Proxmox VE ACME Client Configuration
26:25 Compose Service Account
35:32 Summary

ssl certificate,tls certificate,certificate authority,ca server,certificate authority server,how to create certificate server,proxmox web certificate,step-ca,automate tls certificate,automate web certificate,automate certificate provisioning,automated certificate provisioning

[ad_2]

source