Homelab

22 readers

1 users here now

Rules

Be Civil.
Post about your homelab, discussion of your homelab, questions you may have, or general discussion about transition your skill from the homelab to the workplace.
No memes or potato images.
We love detailed homelab builds, especially network diagrams!
Report any posts that you feel should be brought to our attention.
Please no shitposting or blogspam.
No Referral Linking.
Keep piracy discussion off of this community

founded 1 year ago

MODERATORS

communick@selfhosted.forum

rglullis@communick.news

Does using step-CA make sense in homelab? (alien.top)

submitted 1 year ago by domanpanda@alien.top to c/homelab@selfhosted.forum

2 comments fedilink hide all child comments

Im using certbot with dns challenge (cloudflare api token) to renew letsencrypt cert for my nginx proxy. I want also to create CA cert to sign longterm certs for upstream servers/services and set nginx to trust CA cert. Longterm because of no possibility to automate renewal for those devices/services. Will stepCA have any use for me or just use openssl?

top 2 comments

sorted by: hot top controversial new old

[–] qfla@alien.top 2 points 1 year ago

Oh no step-ca what are you doing?

Sorry i had to do this

Joking aside I recommend setting up internal CA with easyrsa project from OpenVPN github repository

[–] Tecchie088@alien.top 1 points 1 year ago

I've been using step-ca for about 3 years in my lab, it's great, especially for services that support ACME (Proxmox, Caddy, etc.).