Auto generate Lets Encrypt certificates

NTS
NTS Posts: 2
Fifth Anniversary

Could a feature be added to USG/ATPs where you can use a lets encrypt certificate for say SSLVPNs, and set it too auto renew every 90 days? So other vendors already support this.

3 votes

Active · Last Updated

Comments

  • Zulgrib
    Zulgrib Posts: 24
    First Comment Friend Collector Second Anniversary
     Freshman Member

    If the certificate hash changes all the time you cannot verify in a reliable way if there's a mitm attack. The correct way is to create your PKI.