Support for Let's Encrypt

Idea ID 2781789

Support for Let's Encrypt

Let’s Encrypt is a free, automated, and open Certificate Authority.
It is a great solution for adding certificates to your system without the costs or the hassle.
There is wide support for it, see https://letsencrypt.org/ and https://letsencrypt.org/getting-started/

It would be great to have support for Let's Encrypt in ZENworks!!!

This essentially comes down to adding support for the ACME protocol
and including an ACME client (see https://letsencrypt.org/docs/client-options/)

With a how to document and experimental support in the first release
Later on, GUI configuration wizard and inclusion of Let's Encrypt configuration in the Installation and Upgrade, can be added.

Hopefully this is possible...
2 Comments
Outstanding Contributor.
Outstanding Contributor.
On one side, great idea. Issue is that zenworks endpoint agent would constantly have to update the certificate every month or as well, before the previous one expires and also before new one is made active in order to securely talk to server. If clients are offline or out of contact during this window it would miss acquiring the new certificate before the server flips certs and would require manual intervention to rectify.
Absent Member.
Absent Member.
Surely the whole point of a valid public certificate is that it won't need the agent to remember that it's valid ? Would be a problem when the CA list is out of date somewhere though.
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.