deployment:network:step-ca

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		 Previous revision
deployment:network:step-ca [2026/04/04 16:08] – created ilyasadeployment:network:step-ca [2026/04/04 16:55] (current) – [Init CA] ilyasa
Line 2: Line 2:
 step-ca is an online certificate authority for secure, automated certificate management for DevOps. It's the server counterpart to the step CLI tool step-ca is an online certificate authority for secure, automated certificate management for DevOps. It's the server counterpart to the step CLI tool
  
 +==== Install Step-CA ====
 +Ikuti [[https://smallstep.com/docs/step-ca/installation/#debianubuntu|Installation guide]]
 +<code>
 +apt-get update && apt-get install -y --no-install-recommends curl gpg ca-certificates
 +curl -fsSL https://packages.smallstep.com/keys/apt/repo-signing-key.gpg -o /etc/apt/keyrings/smallstep.asc
 +cat << EOF > /etc/apt/sources.list.d/smallstep.sources
 +Types: deb
 +URIs: https://packages.smallstep.com/stable/debian
 +Suites: debs
 +Components: main
 +Signed-By: /etc/apt/keyrings/smallstep.asc
 +EOF
 +apt-get update && apt-get -y install step-cli step-ca
 +</code>
  
 +==== Init CA ====
 +<code bash>
 +step ca init \
 +  --name="IlyasaID Internal CA" \
 +  --dns="ca.internal" \
 +  --address=":443" \
 +  --provisioner="admin@internal"
 +</code>
  • deployment/network/step-ca.1775293727.txt.gz
  • Last modified: 2026/04/04 16:08
  • by ilyasa