I am trying to setup LMS platform (openedx via tutor) on our local DNS server(.local) and this works like a charm. But now I want to enable HTTPS, So that I can make the LMS portal be accessed securely across my local AD network. I need help in setting up procedure to generate certificate & configure caddy manually so that my https works.
These are the certificate certificates I have got from the network team:
Please upgrade to v2.6.1! You’re on a pretty old version now.
You won’t need this anymore, common_log is no longer in the access logs.
You can shorten this by using the single-line named matcher syntax:
@favicon_matcher path_regexp ^/favicon.ico$
I’m a bit confused about this question. Are you saying that you have an existing CA from which you want to issue certs for Caddy to use? Or are you trying to figure out how to use Caddy’s own internal CA to issue certs?
Keep in mind that the server always needs the certificate and the private key associated with it to secure TLS connections. Both are two halves of a whole. The cert contains the public key portion which you tell the client to use to encrypt traffic it sends to your server, and the server uses the private key to decrypt that traffic sent to it.
Just as a point of warning, .local is often not ideal to use, especially if you ever have any Apple devices in the network, because they use .local for their Bonjour multicast DNS, and that can screw things up. See .local - Wikipedia
Are you saying that you have an existing CA from which you want to issue certs for Caddy to use : Yes, exactly our network team has a local CA for our network, I need caddy to use that certificate for all TLS communication, so that we can access this site across our local network with HTTPS.
I saw couple of forums about this advice, for now I guess we have to live with this as this is our organisation policy which I cannot override. However, I will put a note to our network team about this.