Comment on How do I use HTTPS on a private LAN without self-signed certs?
IanTwenty@lemmy.world 1 month ago
I’ll mention this as no one has yet but you can be your own CA. Tools like mkcert make it easy
This is potentially more hassle (than using public DNS) as you have to get your CA certs onto every device. However it may be suitable depending on the situation.
False@lemmy.world 1 month ago
Running your own CA is essentially still a form of self signed. Though it will work better for some use cases (at the cost of more complexity)
WhyJiffie@sh.itjust.works 1 month ago
browsers complain less, and some apps (like HomeAssistant Android) only accept that
False@lemmy.world 1 month ago
Trust the self signed cert. Works similarly to trusting a CA.
IanTwenty@lemmy.world 5 weeks ago
Not on Firefox, some site functionality is disabled: medium.com/…/the-ultimate-newbie-guide-for-self-s…
WhyJiffie@sh.itjust.works 1 month ago
for every single subdomain, on desktop. firefox mobile does bot even remember the decision. HA Android straight out refuses it, and thats not a local problem but a relatively known problem in the community
IanTwenty@lemmy.world 5 weeks ago
I know what you mean but using real self-signed certificates (i.e. no CA at all) with modern browsers causes so many issues I find them unusable.