Open hasan7n opened 1 month ago
Hey @hasan7n, yes, it's likely that will work in terms of ensuring the CLI will trust the connection. However, it's not guaranteed that all functionalities will work while operating in such a configuration. That's why we don't explicitly mention this in our docs, currently.
I am kindly asking for clarification on the
Proxying step-ca traffic
section of the production considerations documentation. Specifically, I would like to understand if this is accurate or not:What seems to be the case is that whichever CA issued the proxy certificate, one can use the
--root
parameter withstep ca
commands to makestep
trust the issuing CA (ref). So, it seems that there is no requirement to have the proxy use certificates issued by step-ca, contrary to what the documentation mentions. Did I miss something?