all lists on lists.proxmox.com
 help / color / mirror / Atom feed
* [PVE-User] Step-CA And Proxmox
@ 2024-08-15  7:22 duluxoz
  2024-08-16  6:38 ` Aaron Lauterer
  0 siblings, 1 reply; 3+ messages in thread
From: duluxoz @ 2024-08-15  7:22 UTC (permalink / raw)
  To: pve-user

Hi All,

We run an internal PKI using the Step-CA project 
(https://smallstep.com/certificates/).

Step-CA can respond to ACME Client requests in exactly the same way that 
Let's Encrypt does - you simply point the client ACME App/Script 
(Certbot, acme.sh, etc) to the local CA instead of Let's Encrypt's servers.

So our question is: Within Proxmox, which can handle Let's Encrypt 
Certs, how do we (is it possible too) point the Proxmox ACME Client to 
our internal Step-CA servers? Is there a config setting we've missed, an 
Add-On, etc, or something else?

Thanks in advance

Dulux-Oz


_______________________________________________
pve-user mailing list
pve-user@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [PVE-User] Step-CA And Proxmox
  2024-08-15  7:22 [PVE-User] Step-CA And Proxmox duluxoz
@ 2024-08-16  6:38 ` Aaron Lauterer
  2024-08-16  7:22   ` duluxoz
  0 siblings, 1 reply; 3+ messages in thread
From: Aaron Lauterer @ 2024-08-16  6:38 UTC (permalink / raw)
  To: pve-user

With recent versions it is possible to add custom ACME directories. That 
should most likely do what you need?

On  2024-08-15  09:22, duluxoz wrote:
> Hi All,
> 
> We run an internal PKI using the Step-CA project 
> (https://smallstep.com/certificates/).
> 
> Step-CA can respond to ACME Client requests in exactly the same way that 
> Let's Encrypt does - you simply point the client ACME App/Script 
> (Certbot, acme.sh, etc) to the local CA instead of Let's Encrypt's servers.
> 
> So our question is: Within Proxmox, which can handle Let's Encrypt 
> Certs, how do we (is it possible too) point the Proxmox ACME Client to 
> our internal Step-CA servers? Is there a config setting we've missed, an 
> Add-On, etc, or something else?
> 
> Thanks in advance
> 
> Dulux-Oz
> 
> 
> _______________________________________________
> pve-user mailing list
> pve-user@lists.proxmox.com
> https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user
> 
> 


_______________________________________________
pve-user mailing list
pve-user@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [PVE-User] Step-CA And Proxmox
  2024-08-16  6:38 ` Aaron Lauterer
@ 2024-08-16  7:22   ` duluxoz
  0 siblings, 0 replies; 3+ messages in thread
From: duluxoz @ 2024-08-16  7:22 UTC (permalink / raw)
  To: pve-user

Thanks.

And that's in the manual? I must have missed it :-)

Cheers

> With recent versions it is possible to add custom ACME directories. That 
> should most likely do what you need?
>
>> On  2024-08-15  09:22, duluxoz wrote:
>>/Hi All, />>//>>/We run an internal PKI using the Step-CA project />>/(https://smallstep.com/certificates/). />>//>>/Step-CA can respond to ACME Client requests in exactly the same way that />>/Let's Encrypt does - you simply point the client ACME App/Script />>/(Certbot, acme.sh, etc) to the local CA instead of Let's Encrypt's 
servers. />>//>>/So our question is: Within Proxmox, which can handle Let's Encrypt />>/Certs, how do we (is it possible too) point the Proxmox ACME Client to />>/our internal Step-CA servers? Is there a config setting we've missed, an />>/Add-On, etc, or something else? />>//>>/Thanks in advance />>//>>/Dulux-Oz />>//>>//>>/_______________________________________________ />>/pve-user mailing list />>/pve-user at lists.proxmox.com 
<https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user> />>/https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user /
_______________________________________________
pve-user mailing list
pve-user@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-user


^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2024-08-16  7:22 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2024-08-15  7:22 [PVE-User] Step-CA And Proxmox duluxoz
2024-08-16  6:38 ` Aaron Lauterer
2024-08-16  7:22   ` duluxoz

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.
Service provided by Proxmox Server Solutions GmbH | Privacy | Legal