deployment:network:step-ca

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
deployment:network:step-ca [2026/04/04 16:17] ilyasadeployment:network:step-ca [2026/04/04 16:55] (current) – [Init CA] ilyasa
Line 2: Line 2:
 step-ca is an online certificate authority for secure, automated certificate management for DevOps. It's the server counterpart to the step CLI tool step-ca is an online certificate authority for secure, automated certificate management for DevOps. It's the server counterpart to the step CLI tool
  
-===== Install Step-CA =====+==== Install Step-CA ====
 Ikuti [[https://smallstep.com/docs/step-ca/installation/#debianubuntu|Installation guide]] Ikuti [[https://smallstep.com/docs/step-ca/installation/#debianubuntu|Installation guide]]
 <code> <code>
-cat <<EOT > /etc/yum.repos.d/smallstep.repo +apt-get update && apt-get install -y --no-install-recommends curl gpg ca-certificates 
-[smallstep] +curl -fsSL https://packages.smallstep.com/keys/apt/repo-signing-key.gpg -o /etc/apt/keyrings/smallstep.asc 
-name=Smallstep +cat << EOF > /etc/apt/sources.list.d/smallstep.sources 
-baseurl=https://packages.smallstep.com/stable/fedora/ +Types: deb 
-enabled=1 +URIs: https://packages.smallstep.com/stable/debian 
-repo_gpgcheck=0 +Suites: debs 
-gpgcheck=1 +Components: main 
-gpgkey=https://packages.smallstep.com/keys/smallstep-0x889B19391F774443.gpg +Signed-By: /etc/apt/keyrings/smallstep.asc 
-EOT +EOF 
-dnf makecache && dnf install -y step-cli step-ca+apt-get update && apt-get -y install step-cli step-ca 
 +</code> 
 + 
 +==== Init CA ==== 
 +<code bash> 
 +step ca init \ 
 +  --name="IlyasaID Internal CA" \ 
 +  --dns="ca.internal"
 +  --address=":443"
 +  --provisioner="admin@internal"
 </code> </code>
  • deployment/network/step-ca.1775294263.txt.gz
  • Last modified: 2026/04/04 16:17
  • by ilyasa