alt Hacker NewsYou could also manually install CA certificates on every client device, or you can tell users to live with the security warnings shown by browsers...
It is currently not possible to keep your internal network private and still have HTTPS without hacks or problems on standard end user devices.
> It is currently not possible to keep your internal network private and still have HTTPS without hacks or problems on standard end user devices.
Only if you consider transferring the cert from the public server to your internal server a hack. But how would it ever work otherwise? The CA needs to have some publicly accessible way to check your control of the domain, right?