Custom server cert from self hosted CA; host cert integration

Recommended Posts

I did a search but didn't see this requested, surprisingly. 


First off, I don't use remote access to my server. Access is limited to my LAN only. I run opnsense as a firewall appliance and my edge router. I would like the ability to install a custom server cert/key generated by my opnsense CA. This simplifies certificate installs. I did try manually replacing the certs but of course it said my cert wasnt valid and I needed to redeploy the unRAID provided cert to resume flash drive backups.


Even the ability to generate a CSR that can be submitted to have signed as an intermediary maybe, since that should leave full My Servers support enabled. Just an alternate idea...




Second request related to first... Support for host certificate verification. It would be a more secure alternative to ACLs, and especially for those connecting remotely, being able to require host certificate would help mitigate risks. This, of course, would be doable easily with being allowed to use a self hosted CA. 



Would be great to see these features in an upcoming release and aren't too difficult to implement, with the CSR/intermediary method requiring the most backend work. Thanks!




Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.