Can you SSL certificate an IP address without domain name
-
Is it possible ?
My Goal is to provide an SSL an intranet site, and keep people using it via LAN and not WAN.
But I dont want to bother with purchasing an Domain name, also I searched and Lets Encrypt doesn't support this it seems, what are my alternatives (I prefer zero cost solutions)
-
Sure, that's just what we call a "self signed certificate". Technically that gets a name (I guess you could leave that blank).
-
This is actually super standard, a lot of servers even do it automatically.
-
Why not setup a internal domain name? Setup an A record and point it to the IP Address? For Example: Intranet.domain.tld
-
Sure you can: (you can add it as a SAN)
-
There is a risk with self signed certs. Of course if it's internal that risk is decreased, but someone on your network could perform a MITM (Man in the Middle) attack.
-
@msff-amman-Itofficer said in Can you SSL certificate an IP address without domain name:
Is it possible ?
My Goal is to provide an SSL an intranet site, and keep people using it via LAN and not WAN.
But I dont want to bother with purchasing an Domain name, also I searched and Lets Encrypt doesn't support this it seems, what are my alternatives (I prefer zero cost solutions)
You have no solutions that let you have a trusted certificate unless you set up your own CA internally and have all machines on your network trust the internal CA.
