They fixed it a bit ago.
this post was submitted on 10 May 2025
190 points (100.0% liked)
iiiiiiitttttttttttt
697 readers
592 users here now
you know the computer thing is it plugged in?
A community for memes and posts about tech and IT related rage.
founded 3 weeks ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
How do you all manage this ?
They manually create certs at my job then manually move them other to a network drive and then a gpo? policy installs those certs to AD users.
I found a way to automate this process (but company didn't care)
But I'm not an IT person, what's the best approach for doing this on promises?
edit: I like the responses but I was hoping for something that wouldn't use 3rd party products. What if hypothetically the certificates were self signed and you wouldn't need a 3rd party CA?
Another thing is: is using 3rd party CAs really the most common way ?
Luckily Let's Encrypt made automation more popular. Every new domain of mine gets a cert that is renewed automatically. I don't have to worry at all about it.
How do you manage automatic renewal?
A cronjob calling Let's Encrypt's tool. I think it's called certbot.
I use caddy as reverse proxy and you have to do... Literally nothing. Point the domain at your server and write in the Caddyfile
my.domain { reverse_proxy myservice:3000 }
It also supports wildcard certificates for many domain services
For my personal setup at home: Traefik with LE
I think at work my technical lead buys multi-year certs and manually imports them.
Some clients of us use LE in some combination with another software.
I use a cronjob with cerbot to renew
I also have Uptime Kuma setup to alert if certificates are getting close to expiration