top | item 44429026

(no title)

haddonist | 8 months ago

This may be good for the selfhoster who is running more an a couple of sites.

But a GUI to manage enterprise-level SSL fleets? Doubtful.

Not when a change/configuration management system (Puppet, Chef, Ansible etc etc..) driven by git commits enables single-source-of-truth, peer-review, and automatic creation/monitoring/renewal of certificates.

discuss

weddpros|8 months ago

You're absolutely right, at the enterprise level, managing an SSL fleet goes far beyond just issuance, and you can't assume the certificates you're issuing are the only ones that exist.

Shameless plug: if you need to cut through the noise of thousands of certs across thousands of hosts, there's https://sslboard.com

indigodaddy|8 months ago

Shame this isn't open source or some open source equivalent

PeterStuer|8 months ago

Most "homelabs", self hosters or small outfits would already use something like Traefik or Cloudflare tunnels with auto cert management.

Their main concerns are getting browser "unsafe" warnings disappear and keep it so. They want nothing to do with cert issuance or renewal.