Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Acme: send renewal certs to other servers

    Scheduled Pinned Locked Moved
    ACME
    2
    3
    644
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      simtwo
      last edited by

      Has anyone experimented with sending the renewed .crt and .key via scp (with pubkey) or other method to devices outside of the pfsense?

      I'm wondering if that would be the right way.

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        No and it wouldn't generally be the best way. Not only does the receiving system need the new certificate, it also has to get it into the right place and restart the appropriate services. If you want to do that centrally, it would require a platform with more orchestration skills, not a firewall (something like salt or puppet).

        Remember: Upvote with the πŸ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • S
          simtwo
          last edited by

          Got it, thanks for the reply!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post