Instructions and Scripts to Deploy SSL Certificates virtually everywhere.
The set of scripts and instructions in this repository allow to deploy SSL certificates in the environments our Company GMS uses including environments that do not allow HTTP validation via let's encrypt as most of our systems are not exposed to the internet. We centralized our domain management on cloudflare and these scripts, while they can frequently adapted to other systems, are not made for anything else than Cloudflare. This collection contains four types of approaches:
- Guides for systems that bring their own let's encrypt implementation
- Scripts for systems that allow the implementation of let's encrypt SSL certificates through 3rd party tools
- Installation, configuration and maintenance of systems meant to install certificates on other systems
- Installation, configuration and maintenance of systems meant to retrofit existing systems with SSL (reverse proxies)
- Cloudflare DNS Account (Free);
- In case of Windows Deployments the following scripts: PSExec, POSH-ACME, POSH-ACME.DEploy;
- In case of Linux all implementations are made for Ubuntu, other distributions might or might not work and are not supported.
Right now we cover following systems:
- Windows Server 2022 Personal Certificate Store & LDAPs
- Windows Server Remote Desktop Session Host
- Windows Server Terminal Server
- Windows Server IIS
- Windows Server Active Directory Federation Server (obsolete?)
- Unifi OS Control Server
- Proxmox Server 8.2
- iDrac 8
- Dell Open Manage Server
Willingfully or not, some people have significantly contributed to the creation of the scripts.
- Ryan Bolger, who wrote an amazing collection of tools regarding the implementation of let's encrypt on windows via powershell