Let’s Encrypt (ACME) on OPNsense as CA for all my Nethserver on LAN?

NethServer Version: 8

Is it possible to get a Let’s Encrypt (ACME) for OPNsense and create Certs for all my NethServer on the same LAN?

No, that’s not possible.

1 Like

Do you want to get a wildcard cert for a (one) domain from let’s encrypt to your opnsense and want this from your opnsense to be distributed to all clients in your LAN?

Sounds good…

1.) Be sure, that all DNS records are setup properly.
2.) Have a close look at opnsense - Services: ACME Client
2a) For the challenge type I recommend - DNS-01
2b) define your certificates
2c) define your automations - distribute the certs to your servers/applications
3.) convert the certs to neth7 - a bash script and a cronjob can help with this
4.) copy the converted certs to all places they belong

done.

2 Likes