brozek/website
1
0
Fork 0
mirror of https://github.com/Brandon-Rozek/website.git synced 2025-09-09 20:12:00 +00:00
Code Issues Projects Releases Packages Activity

Add bit about Fedora

Browse source
This commit is contained in:
Brandon Rozek 2025-08-30 16:12:32 -04:00
parent 0feecfa117
commit 8198ffdb9b
No known key found for this signature in database
GPG key ID: DFB0E78F805F4567
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
content/blog/accessing-homelab-services-mtls.md
View file

@ -149,9 +149,12 @@ When running this command, it'll ask for an export password. You'll need to reme
Before we can import `user.pfx` on our favorite device, we need to have our device trust the root certificate authority. Since we created our own and didn't go through a CA like Let's Encrypt, devices will not trust the certificates by default. Before we can import `user.pfx` on our favorite device, we need to have our device trust the root certificate authority. Since we created our own and didn't go through a CA like Let's Encrypt, devices will not trust the certificates by default.
On Fedora, copy `ca.pem` to `/etc/pki/ca-trust/source/anchors/` and then run `sudo update-ca-trust`.
On Android you can import `ca.pem` via `More security & privacy > Encryption & credentials -> Install a certificate -> CA certificate`. On Android you can import `ca.pem` via `More security & privacy > Encryption & credentials -> Install a certificate -> CA certificate`.
Then you can install `user.pfx` via `More security & privacy > Encryption & credentials -> Install a certificate -> VPN & app user certificate`. After install the CA public certificate, we can install `user.pfx` via `More security & privacy > Encryption & credentials -> Install a certificate -> VPN & app user certificate`. On Fedora, you can do this within Firefox.
### Nginx Authenticated Proxy Setup ### Nginx Authenticated Proxy Setup