step-ca
Step-ca is a self-hosted proxy servers tool that provides online certificate authority for secure, automated certificate management.
Overview
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH. Secure DevOps workflows with Smallstep. Automate trust and integrate device identity across DevOps pipelines for enhanced security. The project has 8K+ GitHub stars and is licensed under Apache-2.0.
Getting Started
Source: GitHub README
See our installation docs here.
Normalized Features
Source: tool-features-normalized.json
kubernetes, ldap, mysql, postgresql, ssl tls, sso, two factor auth.
Deploy
Features
Authentication & Access
- LDAP / Active Directory
- Single Sign-On (SSO)
- Two-Factor Authentication
Security & Privacy
- SSL / TLS / HTTPS
Related Networking & VPN Tools
View all 99 →
Caddy
71KA fast, extensible web server with automatic HTTPS — zero-config TLS certificates for every site, built-in reverse proxy, and a simple Caddyfile config format.
Traefik
62KCloud-native application proxy and ingress controller that auto-discovers services and handles TLS certificates, load balancing, and routing with zero manual configuration.
Pi-hole
56KNetwork-wide ad blocking DNS server that protects every device on your network without installing anything on individual devices.
Headscale
37KAn open source, self-hosted implementation of the Tailscale control server.
AdGuard Home
33KNetwork-wide software for blocking ads and tracking. Covers all your home devices with no client-side software needed.
Nginx Proxy Manager
32KExpose your services easily and securely. Manage Nginx proxy hosts with a simple, powerful interface and free SSL via Let's Encrypt.