You can use the certificate fom your sense. Inside the acme client / automation you can copy the certificate with sftp to your server, but you have to use the right ssh key, he is inside /var/etc/acme-client/sftp-config/
and here is a helpful script so copy the key to your server
#!/bin/sh
# Copyright (c) 1999-2020 Philip Hands <phil@hands.com>
# 2020 Matthias Blümel <blaimi@blaimi.de>
# 2017 Sebastien Boyron <seb@boyron.eu>
# 2013 Martin Kletzander <mkletzan@redhat.com>
# 2010 Adeodato =?iso-8859-1?Q?Sim=F3?= <asp16@alu.ua.es>
# 2010 Eric Moret <eric.moret@gmail.com>
# 2009 Xr <xr@i-jeuxvideo.com>
# 2007 Justin Pryzby <justinpryzby@users.sourceforge.net>
# 2004 Reini Urban <rurban@x-ray.at>
# 2003 Colin Watson <cjwatson@debian.org>
# All rights reserved.
#
# Redistribution and use in source and binary forms, with or without
# modification, are permitted provided that the following conditions
# are met:
# 1. Redistributions of source code must retain the above copyright
# notice, this list of conditions and the following disclaimer.
# 2. Redistributions in binary form must reproduce the above copyright
This file has been truncated. show original
Hi@all,
I have a question about the SSL certificates within a UCS domain. After a standard installation you will find a local CA that provides self-signed certificates. This can be found on the master under /etc/univention/ssl:
lrwxrwxrwx 1 root nogroup 18 Feb 15 2022 ap01 -> ap01.lan.example.de
drwxr-x--- 2 root DC Backup Hosts 4096 Feb 15 2022 ap01.lan.example.de
lrwxrwxrwx 1 root nogroup 21 Feb 16 2022 cloud01 -> cloud01.lan.e…