How do you manage the distribution of internal TLS network certificates? I’m using cert-manager to generate them, but the root self-signed certificate expires monthly which makes distribution to devices outside of K8s a challenge. It’s a PITA to keep doing this for the tablet, laptop and phones. I can bump the root cert to a year, but I’m concerned that the date will sneak up on me. Are there any automated solutions?

    • frantic6423@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 months ago

      Hadn’t heard of this before. I’ll give it a whirl.

      Is *warden the new hotness? Bitwarden, vaultwarden, linkwarden and now certwarden?