English Forums > Zenarmor (Sensei)

Tutorial: How to Change a Self-Signed Certificate with a CA-Signed Certificate o

(1/2) > >>

beki:
Dear Beloved Zenarmor Users,

OPNsense allows you to create Let's Encrypt certificates using the ACME client, a plugin included in the repository. Let's Encrypt certificates are advantageous due to their cost-free nature and the ease with which they can be created for your domains.

The primary aim of Let's Encrypt and the ACME protocol is to facilitate the establishment of an HTTPS server that acquires a browser-trusted certificate autonomously, without requiring any human intervention. This is achieved through the implementation of a certificate management agent on the web server.

In this tutorial, we will explain how you can change a self-signed certificate with a Let's Encrypt certificate on your OPNsense firewall.

https://www.zenarmor.com/docs/network-security-tutorials/how-to-change-self-signed-certificates-with-ca-signed-certificate-on-opnsense

Best Regards,

Zenarmor Team

FullyBorked:
Thank you for the detailed tutorial.  But is there any way to use the ACME issued cert in Zenarmor for TLS decryption or for the TLS block page? 

beki:
Hi,
You may use your own certificate by importing it.
https://www.zenarmor.com/docs/opnsense/configuring/ca-management#import-ca-certificate
Bests

IHK:
Yes, you can use your own certificate.

When you import it from Settings - Certificate Authority, your certificate is now used.

Self-signed certificate created by Zenarmor is being replaced.

FullyBorked:
Not sure that really answers my question.  Currently I use ACME (the way your tutorial instructs) to have a Let's Encrypt cert on my opnsense instance.  What I'm asking is how can I use that same cert and/or process to automatically generate and use an Let's Encrypt cert using ACME on Zenarmor? 

Navigation

[0] Message Index

[#] Next page