This setup creates an AWS key pair for each DNS name that can be used to prove to LetsEncrypt the ownership. So the machines in question, say dev workstations, can generate signed certs.
We used to use self-signed certs with long expiry times, but it is sounding like in the not too distant future there will be browser animosity towards long-lived certs.
linsomniac|5 years ago
This setup creates an AWS key pair for each DNS name that can be used to prove to LetsEncrypt the ownership. So the machines in question, say dev workstations, can generate signed certs.
We used to use self-signed certs with long expiry times, but it is sounding like in the not too distant future there will be browser animosity towards long-lived certs.