Comment on How do I use HTTPS on a private LAN without self-signed certs?
IanTwenty@lemmy.world 1 week ago
I’ll mention this as no one has yet but you can be your own CA. Tools like mkcert make it easy
This is potentially more hassle (than using public DNS) as you have to get your CA certs onto every device. However it may be suitable depending on the situation.
False@lemmy.world 1 week ago
Running your own CA is essentially still a form of self signed. Though it will work better for some use cases (at the cost of more complexity)
WhyJiffie@sh.itjust.works 1 week ago
browsers complain less, and some apps (like HomeAssistant Android) only accept that
False@lemmy.world 1 week ago
Trust the self signed cert. Works similarly to trusting a CA.
IanTwenty@lemmy.world 1 week ago
Not on Firefox, some site functionality is disabled: medium.com/…/the-ultimate-newbie-guide-for-self-s…
WhyJiffie@sh.itjust.works 1 week ago
for every single subdomain, on desktop. firefox mobile does bot even remember the decision. HA Android straight out refuses it, and thats not a local problem but a relatively known problem in the community
IanTwenty@lemmy.world 1 week ago
I know what you mean but using real self-signed certificates (i.e. no CA at all) with modern browsers causes so many issues I find them unusable.