FICHA · MANJARO

step-ca

A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

  • Service
  • SERVICE
  • SECURITY
  • NETWORK
  • Launchable
  • Background service
official+codex · reviewed · May 29, 2026 description in en

Description

Creates a private certificate authority for issuing and renewing X.509 and SSH certificates, including ACME workflows for internal TLS automation. It helps teams give services trusted certificates without relying on a public certificate authority for every internal system.

A certificate authority is security-critical infrastructure. Protect its keys, restrict administrative access, back up configuration safely, and understand revocation before using it in production.

How to run

step-ca.service

Permissions

Permissions not analysed for this source yet.