Intermediate Certificates still a "no go"?

I’m referring to this closed post and looking for an update: https://community.letsencrypt.org/t/does-lets-encrypt-offer-intermediate-certificates/71957/6

And am looking for a way to issue intermediate certificates for Azure IoT-Hub devices as described here in the third “bullet” option:
https://docs.microsoft.com/en-us/azure/iot-hub/iot-hub-security-x509-get-started#get-x509-ca-certificates

Just wondering if the case is the same or any changes since then.

Thanks!

:wave: Hi @GGleGrand, welcome to the community forum.

There hasn’t been any change. Let’s Encrypt only issues end entity certificates, not intermediate certificates and it’s unlikely we’ll change this policy.

4 Likes

I’d like to point out, as far as I know even if let’s encrypt did offer that it would be far from free (or cheap). An intermediary certificate comes with very expensive and lengthy webtrust auditing obligations and would require an expensive hsm.