Christoph Stoettner

I work at Vegard IT GmbH as a senior consultant with a focus on collaboration software, Kubernetes, security and automation. I mainly deal with HCL Connections, WebSphere Application Server, Kubernetes, Ansible, Terraform and Linux.
Sometimes my daily work results in technical talks and blog articles, which you can follow here more or less regularly. You can find the presentations in the main menu under public speaking .
I created a list of tools I use regularly, most of which have been released under an open source license.
In my spare time I read a lot, test all kinds of technical software and gadgets and try to follow about 200 RSS feeds. Here you can find a collection of them.
This is my private blog, all opinions are my own.
Link collection
I save links I want to read later or store because they are interesting in Shaarli .
Shaarli delivers a nice overview of links on daily , weekly and monthly basis. Or you check the Tag cloud when you’re interested in special topics.
I try to add some description to each link, so I don’t need to create the linkdump posts.
Why is the domain name stoeps?
This is a very old story and it started in school. Stoeps was just my nickname and I have kept it ever since.
Contact
- PGP Key
- Fingerprint:
641C D2C7 4596 010D 5843 4863 7704 D09C E996 50FC
\ - Mail address: christoph.stoettner (at) stoeps.de
- Fingerprint:
- Signal
stoeps.13
- Matrix
@stoeps:matrix.org
- Threema
MBXU92A6
Copyright
- Some rights reserved
- All content created by me, is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License unless noted otherwise
Credits
This blog is generated with Hugo and uses
- Bootstrap 5
- Line Awesome
- Stockimages from Unsplash used for category overview:
Last Articles

I’m still working on encrypting all network traffic between Connections and Component Pack servers. This time I checked the Ingress-Nginx Controller - TLS/HTTPS documentation.
The default configuration for connecting IHS with Component Pack uses the plain HTTP port 32080. All traffic like /social
or the Tailored Experience wizard is routed from IHS to Kubernetes on port 32080.
Our target is to encrypt the traffic on port 32443.
Last Update: Read in about 4 min

At the moment I’m working with a customer to secure all traffic in HCL Connections. The target is to have only encrypted network traffic between servers.
Today I started enabling encryption to Redis. This is a documented process , but the documentation is outdated and incomplete.

Today I read the article KB0118248 and remembered my blog post from 2018 . I also checked the attached aha idea where a comment states that you can use iframe for Youtube. Despite what KB0118248 incorrectly states, it is absolutely possible to embed videos in HCL Connections blogs and wikis using the HTML video tag as demonstrated in this post.
Last Update: Read in about 2 min

The HCL Connections documentation describes the process for configuring Windows desktop single-sign-on in a somewhat complicated way. Here are the necessary steps for setting up with the highest possible encryption.
Last Update: Read in about 6 min

I received several complaints from users who struggle to identify uploaded images in the File Uploads
section of blogs. This happens because pasted images get cryptic filenames like editor_image_
+ UUID
, making it challenging to identify and delete unused images.
Last Update: Read in about 2 min

I use chezmoi
for my dotfiles. To find out why and how to get started, check out my talk
from Chemnitzer Linuxtage 2025
.
Within chezmoi
, you can use the file .chezmoiexternal.toml
to download archives or git repositories during updates. This is particularly useful for managing external dependencies. Let me walk you through some common use cases.
Last Update: Read in about 3 min