Don't require each individual certificate to be trusted

bdukes / PowerShellModules

A collection of PowerShell modules

Apache License 2.0

44 stars 9 forks source link

Don't require each individual certificate to be trusted #11

Closed bdukes closed 2 years ago

bdukes commented 2 years ago

Ideally, we'd create a single trusted root the first time it's run and then generate certificates from that later on.

In the meantime, can we generate a single certificate for all bindings?

bdukes commented 2 years ago

Investigate using something like https://www.npmjs.com/package/devcert

bdukes commented 2 years ago

https://github.com/FiloSottile/mkcert

bdukes commented 2 years ago

SslWebBinding 1.3.0 (and DnnWebsiteManagement 1.4.2 which relies upon it) support mkcert now. If it's installed, it will be used to generate a single certificate for all host headers. It's also assumed that mkcert -install has been run to trust the CA.