Le 16/11/2016 à 13:33, Arthur Emerson a écrit :
Is this something that might be supported/integrated into future PF
releases so that it "just works" out of the box? It is the first
that I've heard about LetsEncrypt, and their automated process for
managing certs for non-financial systems is intriguing...not to
mention the free price...
Hi,
The main issue with LE is that as it doesn't provide wildcard certs, if
you have to generate a packetfence.yourdomain.com cert, this address
has to be resolvable and accessible from the WAN in http/https. This can
be problematic...
So there are multiple approachs :
- redirect LE 80/443 request to your packetfence server, and install LE
agent there,
- install LE agent on your firewall or web frontend, and rsync certs
with packetfence server.
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
