Https/LetsEncrypt beta - Please explain?

gregg098 · September 23, 2021, 2:06am

Stupid question time. I’m missing the obvious. Can someone explain how the new https / LetsEncrypt beta works? Not an SSL expert, obviously, but I understand the basics of getting SSL certificates through LetsEncrypt to some degree, including using DNS for auth. In experimenting with the Tailscale beta feature that just started today (no I dont need to use this feature but yes I wanted to anyways), I can generate certificates for my public ledger domain name with the tailscale cert command on a node, I can see that certificates are saved under /var/lib/tailscale/certs, so the stupid question is, how do I use these from here? Are these certificates I can point Nginx at, for example, for securing an https connection for my Tailscale domain? Or different altogether?

Sorry for the dumb question. I couldn’t figure it out from the help docs.

apenwarr · September 23, 2021, 7:33pm

Yes, the idea is that you can provide the cert(s) to nginx or any other TLS service. There are several letsencrypt client packages out there that do something similar, updating a cert periodically and dropping it in a standard location.

ᐧ

py_dream · November 10, 2021, 6:58pm

Hi @apenwarr, I want to try this with nginx, but can’t seem to locate the cert files after certifying a machine (ubuntu server). Have tried to find .key or .pem files but can’t seem to locate any relevant to tailscale. Thanks!

Topic		Replies	Views
Issuing certs directly to Traefik? Linux	0	1000	May 13, 2022
Tailscale plus MS Exchange results in cert error SUPPORT QUESTIONS	6	456	May 25, 2022
Tailscale HTTPS with Jellyfin and domain alias Windows	2	2436	January 19, 2022
Expiry of SSL certificate SUPPORT QUESTIONS	1	660	June 8, 2023
Stuck on Provision TLS certificate for internal Tailscal services	3	1135	December 27, 2022

Https/LetsEncrypt beta - Please explain?

Related topics