HTTPS and TLS Support
-
Hello,
I would like to revisit a topic that was raised and closed back in 2016. I would like to clarify about the current support for HTTPS.
Upon reviewing the documentation, it's indicated that there is an option to select between HTTP and HTTPS protocols. However, despite my efforts, I've found myself unable to switch to HTTPS. Could anyone provide clarity on whether this functionality is now fully supported and, if so, guide me on how to activate HTTPS for our operations?
Additionally, there's mention of TLS support. The documentation hints at this feature not being fully implemented yet. Could someone update me on the current status of TLS support as for now?
I appreciate any updates you can provide regarding HTTPS and TLS support. Thank you.
Kind regards,
Nazar -
@Nazar tls support is not currently part of the standalone esp solution. if you run reprapfirmware in SBC you may be able to configure it so the DWC only allows local connections and using a reverse proxy that supports HTTPS. You would still need to look into getting certificates installed which can be bother some if you don't have the infrastructure in place (https://github.com/Corollarium/localtls may help).
-
Would providing VPN access to your internal network achieve your security aim?
If there are multiple printers involved, this may be simpler overall. -
@Nazar @oliof SBC mode has supported HTTPS for quite a while. It can be enabled by running
M586 P0 T1 S1(that typically generates a self-signed certificate on first use). There is no need to fiddle with reverse proxies either. All TLS/secure protocol features in the M586 docs refer to SBC mode AFAIR. -
@chrishamm thanks for the update; the last time I looked into this I couldnt figure it out (years ago).
