OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Archive »
  • 23.1 Legacy Series »
  • Import trusted certificate via shell
« previous next »
  • Print
Pages: [1]

Author Topic: Import trusted certificate via shell  (Read 638 times)

oldjoe

  • Newbie
  • *
  • Posts: 4
  • Karma: 0
    • View Profile
Import trusted certificate via shell
« on: March 11, 2023, 04:57:58 am »
Hi,

I have a centralized Let's Encrypt server that manages multiple domains and would like to keep that setup separate as it involves quite a bit of automation.

Preferably I would like to migrate my current StrongSwan VPN server (running in a VM) along with its domain certificate into my awesome OPNsense desktop appliance so I could retire that VPN VM.

Is there a way to import the 3 cert files (certs/server-cert.pem, cacerts/chain.pem, private/server-key.pem) via SCP/API; import them from my VM managing the certificates? And have that import setup on a schedule that would be available to the OPNsense IPsec VPN service in an automated fashion?

Thanks in advance!
Logged

bartjsmit

  • Hero Member
  • *****
  • Posts: 2017
  • Karma: 194
    • View Profile
Re: Import trusted certificate via shell
« Reply #1 on: March 11, 2023, 10:24:25 am »
I wrote a script for that https://github.com/bartsmit/distcerts
Logged

oldjoe

  • Newbie
  • *
  • Posts: 4
  • Karma: 0
    • View Profile
Re: Import trusted certificate via shell
« Reply #2 on: March 15, 2023, 01:22:53 am »
That is so awesome - Thanks a lot for sharing bartjsmit! Will try it out
Logged
  • Print
Pages: [1]
« previous next »
  • OPNsense Forum »
  • Archive »
  • 23.1 Legacy Series »
  • Import trusted certificate via shell
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2