SSL Certificates: Difference between revisions

Latest revision as of 21:33, 21 September 2025

TLS/SSL Certificates, also called public key certificates, are files that verify the authenticity of a website or other online entity. They contain the public key of the certificate holder and are issued by trusted certificate authorities to enable secure, encrypted communications between clients and servers.

Obtain new certificates

See ACME.

Installation

To add additional trusted root certificates, use one or both of the following options:

security.pki.certificates = [ "<insert_certificate_text_here>" ];

security.pki.certificateFiles = [ "/path/to/cert1" "/path/to/cert2" ];

The first option is a list of strings, whereas the second is a list of filesystem paths.

@@ Line 1: / Line 1: @@
-SSL Certificates, also called [[wikipedia:Public_key_certificate|public key certificates]], are
+TLS/SSL Certificates, also called [[wikipedia:Public_key_certificate|public key certificates]], are files that verify the authenticity of a website or other online entity. They contain the public key of the certificate holder and are issued by trusted certificate authorities to enable secure, encrypted communications between clients and servers.
+== Obtain new certificates ==
-To install SSL Certificates, use one or both of the following options:<syntaxhighlight lang="nix">
+See [[ACME]].
+== Installation ==
+To add additional trusted root certificates, use one or both of the following options:<syntaxhighlight lang="nix">
 security.pki.certificates = [ "<insert_certificate_text_here>" ];
@@ Line 9: / Line 14: @@
 The first option is a list of strings, whereas the second is a list of filesystem paths.
+[[Category:Security]]
+[[Category:Networking]]