Incase you are doubting support for Centos since they mostly mention Ubuntu
here is official https://sandstorm.io/news/2016-11-10-rhel-centos-arch-support
Could we make a simple effective way to install the solution on Nethserver, while also making use of the Ldap server offered.
The setup questions could be answered with default values or “none”.
After this you get a link to connect like http://testserver.domain.local:6080/setup/token/7c4d41c8482da0ae44e10c2bd2887…
but you have to setup firewall first, better way would be to use some reverse proxy but for now just open the port and apply the config:
config set fw_sandstorm service status enabled TCPPort 6080 access green
signal-event firewall-adjust
That’s it, now you may setup sandstorm (including ldap connector) via web browser…
EDIT:
Working settings for local LDAP server (you may get the settings with account-provider-test dump)
Pretty much everyone who does static DNS will let you do wildcards. If you need dynamic DNS, I don’t know–it’s been decades since I’ve used dynamic DNS. But if you don’t need dynamic DNS, just pick a DNS host with a supported API and use acme.sh to get your cert. Or, as you suggest, use acme-dns instead.
acme-dns is free, and you definitely can’t beat the price of that. But unless dynamic DNS is needed, there are also other free options (Cloudflare is one) that don’t require installing anything other than a simple script (can’t say there aren’t free alternatives if you do need dynamic DNS; I just don’t know that field well enough).
acme-dns is more secure, in that it doesn’t carry the risk of exposing credentials that could let an attacker steal your domain. OTOH, it requires running a new server process on your server, which no doubt introduces other (as-yet-unknown) vulnerabilities.
As is often the case, lots of ways to skin this cat.