ZENworks Configuration Management: Support for Let's Encrypt

Let’s Encrypt is a free, automated, and open Certificate Authority.
It is a great solution for adding certificates to your system without the costs or the hassle.
There is wide support for it, see https://letsencrypt.org/ and https://letsencrypt.org/getting-started/

It would be great to have support for Let's Encrypt in ZENworks!!!

This essentially comes down to adding support for the ACME protocol
and including an ACME client (see https://letsencrypt.org/docs/client-options/)

With a how to document and experimental support in the first release
Later on, GUI configuration wizard and inclusion of Let's Encrypt configuration in the Installation and Upgrade, can be added.

Hopefully this is possible...

by: Raymond M. | over a year ago | Other

On one side, great idea.
Issue is that zenworks endpoint agent would constantly have to update the certificate every month or as well, before the previous one expires and also before new one is made active in order to securely talk to server. If clients are offline or out of contact during this window it would miss acquiring the new certificate before the server flips certs and would require manual intervention to rectify.

by: Rodney W. | over a year ago
Surely the whole point of a valid public certificate is that it won't need the agent to remember that it's valid ?
Would be a problem when the CA list is out of date somewhere though.

by: Derek B. | over a year ago

Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.

14

Support for Let's Encrypt

Comments