Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
SSL Certificate
#1
I want to try out the HTML client, but given my travel schedule 90% of the usefulness will be outside the house. This means I need an SSL certificate.

Who do you guys use? Any difference in difficulty of setting up based on the CA? I use Dyn.com for my ddns, anyone with experience there?
------------------------------------
Some of my devices: Sonos, Aeotec zWave, Nest, Rain8Net, Various H/T
What's next: CQC-Voice, Brultech GEM
My vlogs: https://www.youtube.com/c/IVBsHomeAutomation
Reply
#2
Hmm. Reading upon this, looks like the certificate gets installed on my CQC server, nothing to do with DynDNS. I think. Izzat right? Anyone ever done this?
------------------------------------
Some of my devices: Sonos, Aeotec zWave, Nest, Rain8Net, Various H/T
What's next: CQC-Voice, Brultech GEM
My vlogs: https://www.youtube.com/c/IVBsHomeAutomation
Reply
#3
It is related to DynDNS. The certificate has to be for the domain name that the incoming connection was made by. So if the connection is made through your DynDNS URL, the certificate has to reflect that. The client (AWS in this case) will verify that the certificate the server provides it is for that URL.
Dean Roddey
Explorans limites defectum
Reply
#4
But nothing gets done on my dyn account, I specify that URL and do the certificate installation all on the CQC server, right?
------------------------------------
Some of my devices: Sonos, Aeotec zWave, Nest, Rain8Net, Various H/T
What's next: CQC-Voice, Brultech GEM
My vlogs: https://www.youtube.com/c/IVBsHomeAutomation
Reply
#5
(01-27-2017, 09:59 PM)IVB Wrote: But nothing gets done on my dyn account, I specify that URL and do the certificate installation all on the CQC server, right?

What about setting up a VPN server instead?  DYN does not issue SSL certificates, they turned their business over to DigiCert in 2011.  DigiCert charges $139 year for SSL. I know others here have set up a free cert but seems to me that a VPN solution would provide greater flexibility and access to all of your home IT resources.

I decided not to spin up a VPN server on my Edge Router, instead I'm in the process of building one on a Raspberry PI 3 using PiVPN.

-Ben
Reply
#6
I've not looked into mobile VPN, if I wanted to use my phone would I start up a VPN client then hit the browser URL?
------------------------------------
Some of my devices: Sonos, Aeotec zWave, Nest, Rain8Net, Various H/T
What's next: CQC-Voice, Brultech GEM
My vlogs: https://www.youtube.com/c/IVBsHomeAutomation
Reply
#7
Yes, exactly. OpenVPN client on Android, once started and connected to your VPN server at home everything you do goes through the VPN tunnel. You can also use Tasker and a VPN plugin to trigger your VPN connection when you launch certain apps, URL widgets, etc.

There is also an OpenVPN client for Windows, or name your OS...
Reply
#8
I use StartSSL, they will issue a free cert.
Wuench
My Home Theater/Automation Website

[THREAD=5957]BlueGlass CQC Config[/THREAD]
[THREAD=10624]Wuench's CQC Drivers[/THREAD]
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)