log in · sign up

GitHub - smallstep/certificates: 🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

github.com

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH. - smallstep/certificates

8 pages link to this URL

Let's Encrypt the house!

WhyNot.Fail Dzervas Apr 9, 2020

Cause when you fail, somebody has to laugh at you

0 inbound links en

stfn (@stfn@fedi.stfn.pl)

fedi.stfn.pl Stfn Sep 30, 2025

The only thing I lose with moving from Tailscale to Wireguard is that Tailscale was providing TLS certs for some of my services, but I guess I can live with that.

1 inbound link article en

Announcing X.509 Certificate Flexibility

Smallsteplabs Dec 4, 2025

We've added X.509 certificate templates to Step Certificates

2 inbound links website en

Andrew Ayer - Blog

agwa.name Andrew Apr 29, 2026

1 inbound link en

SCEPping stone

micromdm.io Author Jesse Peterson Jul 12, 2024

1 inbound link en

SSO for SSH - Which tool to use? | IDPea

idpea.org Lars Scheibling Apr 11, 2025

You want to add extra security and/or Single Sign-On to your SSH server(s), but how? Here is a short summary of the most common solutions

0 inbound links article en sshOpenSSHoidcBitwardensmallstepstep-caopksshopenpubkeyVaultwarden

Configuration Cheat Sheet | Forgejo – Beyond coding. We forge.

Beyond coding. We forge. Cron; Authorized Keys Jan 1, 2026

2 inbound links website en CC BY-SA 4.0

Security Vulnerabilities in Smallstep PKI Software

Copyright 2026 Andrew Ayer Andrew Ayer Dec 17, 2020

Smallstep's PKI software is vulnerable to JSON injection, misuses JWTs, and relies on client-side enforcement of server-side security.

0 inbound links en