Hey everyone! I've been working in DevOps for around three years and I'm looking to enhance the security of my homelab as part of my Certified Kubernetes Security Specialist (CKS) journey. I successfully set up TinyAuth using a Raspberry Pi and a Yubikey, but I'm not quite sure how to leverage it effectively yet. I'm reaching out for recommendations on study materials related to PKI, Certificate Authorities, self-signed certificates, and mutual TLS (mTLS). My goal is to use TinyAuth as my CA for generating client certificates and to set up mTLS with a remote Pangolin instance. I appreciate any guidance you can provide. Thanks!
3 Answers
I recommend diving into the cryptographic concepts behind certificate systems first. That foundation will make it a lot easier when you're setting up your CA and configuring your lab.
It's a good idea to start with the basics of keys and certificates. Once you grasp those concepts, move on to mTLS. Honestly, it’s one of those things that really makes sense when you start experimenting with it—keeping it simple can really help.
You should definitely check out CFSSL by Cloudflare! It has some fantastic tools and solid documentation that can help you get started with certificate management.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures