I've been messing around a bit with Custom Certificates on Meraki Anyconnect. Since I've yet successfully argued with my wife that we need a PKI infrastructure in our home, I've been attempting with LetsEncrypt, and so far I've been unsuccessful.
However, I'm curious if any other out there have been successful with signing certificates for Anyconnect with LetsEncrypt?
I feel I've so far boiled the commands down to either one of two.
sudo certbot certonly --manual --preferred-challenges dns -d <A record pointing to MX IP> --csr MX-Anyconnect.csr
which will provide 3 files; a (device?) certificate, Intermediate CA Chain, and full CA Chain.
Or
sudo certbot certonly --manual --preferred-challenges dns -d <A record to MX IP>
which will request a certificate and require you to create a DNS TXT entry _acme-challenge.<domain name>. with a unique value for DNS-01 challenge, as well as 4 files (same as the three above + the privkey.)
Anyone else had luck with LetsEncrypt for this, or is it simply not supported?
LinkedIn :::
https://blog.rhbirkelund.dk/Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution
🙂All code examples are provided as is. Responsibility for Code execution lies solely your own.