Is it possible to use a LetsEncrypt cert on an internal facing Windows site that will not resolve outside of our organization? If so, what tool should I use? I tried the GUI tool Certify but it will only work if external resolution is possible.

Any help would be greatly appreciated!

Thanks!

Does it have a domain name that you have control over outside of your organization ? if so you could potentially get a certificate using a DNS challenge.

If not, and it hasn’t got a public domain name associated with it, then you can’t obtain a certificate.

As an example the internal domain is “abc.123.com” We only have “123.com” available from the outside. Does that help?

Yes, that helps.

It’s perfectly possible to get a certificate for the abc subdomain using a DNS challenge.

Awesome, do you know a tool or client that runs in Windows for IIS that will do such a thing?

Others may know better - I’m more of a Linux guru. There are windows clients at https://letsencrypt.org/docs/client-options/ at least some of which include the DNS challenge such as ACMESharp

Great I’ll check it out. Thank you for your help!

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.