Hi everyone,
probably a stupid question but since i'm rather new to this whole topic: Is it possible to get a valid, trusted, proxy certificate for the ssl proxy or do i have to install my certificate manually? Using ACME I have a valid web certificate for my domain from Let's encrypt, but I can't use that for the man-in-the-middle inspection of the traffic.
Right now I have installed the certificate manually, but I would love to be able to install a actually valid certificate.
Any tips or hints would be appreciated.
Greetings
Sam
Hi
if by a "valid" certificate you mean a certificate issued by a certification authority included in the trusted lists, then i strongly doubt it: mitm-inspection certificates are generated "on the fly". the "root" certificate used for this must be in the trusted list on the requesting host (so you need to create the CA cert and add it to the Trusted on the clients hosts)