We currently use publicly-signed, and manually renewed, certificates on
our internal directory servers. On other internal and external systems,
we use public and private certificates handled by ACME-compliant agents.
I took a quick look, and was reminded that 389-Directory keeps its certs
in an NSS database. Before I go hack together my own wrapper on
certutil, I thought I'd ask:
Does anyone have a working ACME/Let's Encrypt agent they want to share?
--
--
Do things because you should, not just because you can.
John Thurston 907-465-8591
John.Thurston(a)alaska.gov
Department of Administration
State of Alaska