Let's Encrypt modul or option in config
I'd like to see the connection to my untangle server even inside my network encrypted.
This would be a great addition. It's free and the renewal is automated. Win-Win.
Required to ensure users are accustomed to only connect to sites with valid SSL certificates
Extremely useful for home subscribers looking to host their own services
This feature is a must. Many browsers are now blocking logins without SSL.
Also looking to add this feature without side-loading software to untangle.
Please! This is inevitable anyway as security becomes more intrinsic to anything web hosted, internal or external. It makes sense to be an early adopter (early at this point is debatable of course) on this one!
anything that facilitates better use of SSL inspector is a win win ...... the current version of Ad blocker is almost useless due to https
This would be a great addition that falls under the umbrella of SECURITY. This should really be added.
The changes needed are already built in to Apache. See https://community.letsencrypt.org/t/apache-and-lets-encrypt-version-2-in-2019/93083 for details. All you will need to do is integrate this in to the UI.
If you were to do this then that would make it that much easier to use ssl inspector because then you can have it reencrypt the item using this ssl so you don't have to generate and have people figure out how to install an ssl so that you can have it running on the untangle. This way everything can be scanned that comes in instead of just half of the things that come through
You can find script here. https://forums.untangle.com/hacks/42135-lets-encrpt-server-certificate.html#post235944 I would recommend doing it as in post #6.
Yes add this! Integrate with the UI and it will be better.
DNS encryption like 18.104.22.168 dns vpn app and dns servers 22.214.171.124 - 1 1.1.1. would be a great the have some DNS control app for us there is also no NTP server like pfsense has
I do this every 2+ months. I have a script that runs on my web server (IIS) which also produces CER files. Then I manually add these to my NAS and Untangle systems.
I have an old consumer ASUS router - It has integration for Let's Encrypt! This is your TOP recommendations - Show the community that you listen. This is a critical feature to have in your firewall! It is embarrassing having the "not secure" in the browser for a security product.It seems that there are a few recommended solutions that have already been shared in this and other threads within the Untangle site. Engage the community - have a con-call for implementation design!
I'd like this.
Adding Let'sEncrypt to the Untangle WebUI would be a great feature!
It's implemented in PFsense, you have a way better product then them, please make it happen.Thanks
Love untangle but pfsense had this already implemented and with wild card certs. Might switch to pfsense if untangle subscription renewal is due and this is not available.
+1, really need/want this feature
I'm loving Untangle, but adding Let's Encrypt will take it over the top. Please add! It's really embarrassing having the "not secure" in my browser.
Thanks for your feedback. Based on the feedback we're receiving here, this is on our radar, and we've started looking into it, but we've not committed it to a release yet. Please continue to vote and we'll keep it prioritized.
This would be a great addition to Untangle for ease of managing certs.
@Heather P, I read somewhere that this was on the roadmap for 16.1 release? Is that not the case?
@mrjlturner We have been looking to do this in a 16.x release you are correct. It's not committed yet, but it's prioritized and we'll do it as soon as feasible.
This really should be a priority for the untangle team. I moved over from pfsense and my subscription is due for renewal in December and this will have an impact on whether I leave untangle or stay.
I would like this as well. It makes me uncomfortable keying admin passwords in clear text.
I really look forward to simple and compliant SSL integration through Lets EncryptYou should also consider simple compatibility with SSL Inspector
Well, as of NGFW 16 it literally cannot support Let's Encrypt if you have any other web server on the network that also needs access to port 80.Let's Encrypt support would be fantastic, but unless Untangle reverts their recent changes to port forwarding, we won't be able to get or renew any LE certs if anything on the network needs to also use port 80. This would not have been a problem prior to the version 16 update.
I would also have this integration. Because of the cert hassle the use of ssl is limited. Anything to make the integration easier would be appreciated. I also cringe everytime I log in and see the warning that the site is not secure.
It's been over 2 years since this was suggested. Untangle is lagging behind competitors. Please get this implemented ASAP.
Note that if you use Command Center for remote access to your NG Firewall then you do not have any certificate warning.
it is very useful to ercrypt the LAN or local interface
+1, really would like to use Let's Encrypt for SSL.
PLEASE let's GO. It's 2021!
It is simply mandatory nowadays
This would be such a warm welcome and make it possible to make certificates a bit easier!
Put this on a timeline or a build list please. This should be implemented by 17.0...
How many years this going to take? Asus AX88U with Merlin Firmware looking more viable every day.
It would be nice for those that use the spam filter for not having to walk people through how to just accept the self signed certificate for the dozen or hundreds of users. It is a bad practice to tell people to do this since they do it once, they might do it on a site they should not do it on. Basically it creates a bad security practice by telling people, just to accept and proceed anyway for other possible real security concerns in the future. Thank you
0 / 1,000
* Your name will be publicly visible
* Your email will be visible only to moderators
This feedback board is powered by Feature Upvote.
When submitting your email with a suggestion or comment, Feature Upvote uses your email to
Your email is never displayed to other users. Untangle NG Firewall staff will be able to see your email address.
We’ll email you when the status of the suggestion changes. You can unsubscribe at any time with a single click.
* Comments and upvotes from this suggestion will be moved to another suggestion.
Edit the selected suggestion and create a new one.
Comments and upvotes will also be moved.