GUI cert limit
-
I'm not sure what the proper solution will end up being. The way that form submits information it submits a lot of unnecessary form fields, so fixing that somehow will probably be the right way, but I'm not sure how easy that will be. I didn't write that part of the code.
Safe to say it will be some time before that is fixed. Yes, the ACME limit is 100 but in practice few people need anywhere near that many domains on a single certificate, especially now that you can get wildcards.
-
Its microsoft app.
Wildcard not supported
Has to use one cert only otherwise popups occur
Believe me I would go different way if it was supported
-
Why are you using ACME on pfSense to make its cert then? Use an ACME Client on windows to do it.
-
Im reverse proxying the requests to lan
-
Ah, so the client doesn't support wildcards, not the server. I'd call it dumb, but that's implied from it being a Microsoft app.
If you are using HAProxy to reverse proxy, I believe it can still use a different cert for specific domains. You don't have to stuff them all in a single cert if it's handling the SSL/TLS.
-
Now I have 4 certs covering 3 domains each. And I get popups about different domain stuff because of certs... If I have 1 big fat cert no popups
-
Skype for business is simple answer.
Tried with wildcard but no go...
Also cant tinker whole lot because of 450 users -
The temp fix works OK.
-
There is a patch to try on the redmine issue I linked to previously. I'll try it out today and if it works, then I'll add it into ACME. Looks good at a glance.
-
Hi!
Will try it out later today with staging cert :)
Thanks a lot guys!
-
If you update to the latest version of the ACME package, the patch is included. You will no longer need that
max_input_varsworkaround.
