Let's Encrypt

Comments: 43

• 01 Sep, '18
  greg cohen

  I'd like to see the connection to my untangle server even inside my network encrypted.

• 11 Jan, '19
  NathanR

  This would be a great addition. It's free and the renewal is automated. Win-Win.

• 12 Feb, '19
  Steve

  Required to ensure users are accustomed to only connect to sites with valid SSL certificates

• 14 Mar, '19
  Logan Hyde

  Extremely useful for home subscribers looking to host their own services

• 17 Mar, '19
  Rob Dunham

  This feature is a must. Many browsers are now blocking logins without SSL.

• 08 Apr, '19
  Gary Black

  Yes please!!

• 19 Apr, '19
  Drew

  Also looking to add this feature without side-loading software to untangle.

• 07 May, '19
  Aarib

  Please! This is inevitable anyway as security becomes more intrinsic to anything web hosted, internal or external. It makes sense to be an early adopter (early at this point is debatable of course) on this one!

• 09 May, '19
  KKORKKY

  anything that facilitates better use of SSL inspector is a win win ...... the current version of Ad blocker is almost useless due to https

• 29 May, '19
  RainCaster

  This would be a great addition that falls under the umbrella of SECURITY. This should really be added.

• 29 May, '19
  RainCaster

  The changes needed are already built in to Apache. See https://community.letsencrypt.org/t/apache-and-lets-encrypt-version-2-in-2019/93083 for details. All you will need to do is integrate this in to the UI.

• 03 Jun, '19
  Jason

  If you were to do this then that would make it that much easier to use ssl inspector because then you can have it reencrypt the item using this ssl so you don't have to generate and have people figure out how to install an ssl so that you can have it running on the untangle. This way everything can be scanned that comes in instead of just half of the things that come through

• 28 Aug, '19
  Don

  You can find script here. https://forums.untangle.com/hacks/42135-lets-encrpt-server-certificate.html#post235944 I would recommend doing it as in post #6.

• 23 Oct, '19
  Mark

  Yes add this! Integrate with the UI and it will be better.

• 06 Nov, '19
  Jon

  DNS encryption like 1.1.1.1 dns vpn app and dns servers 1.0.0.1 - 1 1.1.1. would be a great the have some DNS control app for us there is also no NTP server like pfsense has

• 02 Dec, '19
  Tom Friend

  I do this every 2+ months. I have a script that runs on my web server (IIS) which also produces CER files. Then I manually add these to my NAS and Untangle systems.

• 16 Feb, '20
  Scott Stauffer

  I have an old consumer ASUS router - It has integration for Let's Encrypt!
  This is your TOP recommendations - Show the community that you listen.
  This is a critical feature to have in your firewall!
  It is embarrassing having the "not secure" in the browser for a security product.
  It seems that there are a few recommended solutions that have already been shared in this and other threads within the Untangle site.
  Engage the community - have a con-call for implementation design!

• 04 Mar, '20
  Erik

  I'd like this.

• 21 Mar, '20
  Andreas

  Adding Let'sEncrypt to the Untangle WebUI would be a great feature!

• 31 Mar, '20
  WillyBilly

  It's implemented in PFsense, you have a way better product then them, please make it happen.
  
  Thanks

• 19 Apr, '20
  hs

  Love untangle but pfsense had this already implemented and with wild card certs. Might switch to pfsense if untangle subscription renewal is due and this is not available.

• 03 Jun, '20
  Andy

  +1, really need/want this feature

• 05 Jun, '20
  Marcus

  I'm loving Untangle, but adding Let's Encrypt will take it over the top. Please add! It's really embarrassing having the "not secure" in my browser.

• 05 Jun, '20
  Heather P Admin

  Thanks for your feedback. Based on the feedback we're receiving here, this is on our radar, and we've started looking into it, but we've not committed it to a release yet. Please continue to vote and we'll keep it prioritized.

• 07 Jun, '20
  Matt D

  This would be a great addition to Untangle for ease of managing certs.

• 09 Jun, '20
  mrjlturner

  @Heather P, I read somewhere that this was on the roadmap for 16.1 release? Is that not the case?

• 24 Jul, '20
  Heather P

  @mrjlturner We have been looking to do this in a 16.x release you are correct. It's not committed yet, but it's prioritized and we'll do it as soon as feasible.

• 19 Aug, '20
  Andrew

  This really should be a priority for the untangle team. I moved over from pfsense and my subscription is due for renewal in December and this will have an impact on whether I leave untangle or stay.

• 01 Sep, '20
  Ed

  I would like this as well. It makes me uncomfortable keying admin passwords in clear text.

• 18 Sep, '20
  Liceo

  Voted for.

• 22 Oct, '20
  Ryan

  I really look forward to simple and compliant SSL integration through Lets Encrypt
  You should also consider simple compatibility with SSL Inspector

• 09 Nov, '20
  David Yoder

  Well, as of NGFW 16 it literally cannot support Let's Encrypt if you have any other web server on the network that also needs access to port 80.
  
  Let's Encrypt support would be fantastic, but unless Untangle reverts their recent changes to port forwarding, we won't be able to get or renew any LE certs if anything on the network needs to also use port 80. This would not have been a problem prior to the version 16 update.

• 04 Dec, '20
  Earl Gander

  I would also have this integration. Because of the cert hassle the use of ssl is limited. Anything to make the integration easier would be appreciated. I also cringe everytime I log in and see the warning that the site is not secure.

• 24 Dec, '20
  Kevin Hodgson

  It's been over 2 years since this was suggested. Untangle is lagging behind competitors. Please get this implemented ASAP.

• 06 Jan
  Moderator Admin

  Note that if you use Command Center for remote access to your NG Firewall then you do not have any certificate warning.

• 30 Jan
  blackdragon

  it is very useful to ercrypt the LAN or local interface

• 04 Feb
  David Bork

  +1, really would like to use Let's Encrypt for SSL.

• 19 Feb
  Jordan

  PLEASE let's GO. It's 2021!

• 22 Feb
  Steve

  It is simply mandatory nowadays

• 07 Apr
  Sjoerd

  This would be such a warm welcome and make it possible to make certificates a bit easier!

• 04 May
  Matthew C

  Put this on a timeline or a build list please. This should be implemented by 17.0...

• 11 May
  Alex C.

  How many years this going to take? Asus AX88U with Merlin Firmware looking more viable every day.

• 14 May
  James W.

  It would be nice for those that use the spam filter for not having to walk people through how to just accept the self signed certificate for the dozen or hundreds of users. It is a bad practice to tell people to do this since they do it once, they might do it on a site they should not do it on. Basically it creates a bad security practice by telling people, just to accept and proceed anyway for other possible real security concerns in the future. Thank you