Certificate for public IP without domain name

rg305 · September 11, 2018, 3:46pm

https://1.1.1.1/ cert was issued by DigiCert (not LetsEncrypt)

silverwind · September 20, 2018, 6:56pm

I think IP address certificates have to be supported eventually. They are pretty much required for running a DNS-over-HTTPS server because with hostnames you run into a chicken-or-egg problem on a DNS server.

A DNS challenge could be done on the reverse zone, and HTTP is even simpler than for hostnames.

schoen · September 20, 2018, 7:00pm

That’s definitely an important use case, but for example Cloudflare’s is issued by DigiCert, so it doesn’t necessarily absolutely have to be done by Let’s Encrypt.

silverwind · September 20, 2018, 7:07pm

I’m sure you can get IP certicates from other CAs if you pester them enough. I’m worried that CAs will probably attempt to charge a premium for them, which could hinder adoption of DoH.

jsha · September 20, 2018, 7:47pm

It is possible to purchase certificates for IP addresses, but not from Let’s Encrypt. Let’s Encrypt may offer IP address certificates in the future, but as of September 2018 we do not.

Topic		Replies	Views
Can I get a certificate if only have a public IP address? Help	29	7657	December 28, 2022
Certificate for Static IP Issuance Policy	4	25513	August 16, 2015
Can I use my Public IP instead of a doman name Help	3	4553	March 5, 2018
SSL certificate with Public ip in subject alternative name Help	9	3408	April 14, 2023
Certificate for IP address Issuance Tech	2	9427	November 23, 2017

Certificate for public IP without domain name

Related topics