labca icon indicating copy to clipboard operation
labca copied to clipboard
verified publisher icon hakwerk

Use custom cert for web GUI/directory

Open tcatlas opened this issue 4 months ago • 3 comments

I'd like to use a custom certificate validated by a public authority so that my services automatically trust LabCA when trying to request a new certificate (instead of me needing to first import the LabCA cert). Is this possible? If so, how?

tcatlas avatar Aug 15 '25 20:08 tcatlas

may this is possible when the root-CA of LabCA is signed by another authority. Then the servers will trust the certificate of LabCA see -> Use a Sub-CA as "Root-CA"? #196

maikxmh avatar Aug 18 '25 12:08 maikxmh

@maikxmh I'm fine with client devices needing to have my LabCA root cert, I just want the LabCA web GUI to use a public cert so the ACME client automatically trusts LabCA when reaching out to get a LabCA cert.

tcatlas avatar Aug 19 '25 18:08 tcatlas

Perhaps you could add a reverse proxy web server in front of the LabCA web GUI that uses a public certificate?

hakwerk avatar Sep 02 '25 18:09 hakwerk