Our great sponsors
-
certificates
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
I'm currently conflicted which pki tool I should invest time into either: - CloudFlare's PKI/TLS toolkit CFSSL - Smallstep's Step CA
I'm currently conflicted which pki tool I should invest time into either: - CloudFlare's PKI/TLS toolkit CFSSL - Smallstep's Step CA
I need a pki for a hobby/side project which involves Golang and I would also like to utilize ed25519, nothing less. I have experience with setting up a two tier pki AD CS in a Windows domain. I have not only read into cfssl and step ca, but also EasyRSA and EJBCA. EasyRSA seems overkill and does not involve Golang, but I can be convinced otherwise. EJBCA failed for me, because it needed systemd, which means an extra server/vm just for running it.
Related posts
- Which light weight CA do you like best?
- How to manage lots of self-signed certificates
- Distributing ACME Let'sEncrypt certs for homelab
- Web application to manage self-signed certificate authorities/certificates/keys
- A convert from Judaism to Catholicism goes to r/Catholicism to ask if it would be appropriate to pass down a century old Jewish prayer shawl to his son. Not everyone is welcoming.