Domoticz

I want to be able to send json commands outside of my network and possibly get to domoticz webpage or dashboard, as different users to limit views etc might be great but...

I'm not sure how to do it
Search/google/wiki I end up down a confusing nginx route which seems to be pulled from the wiki, Native letsencrypt but that's just a cert? where does the authentication bit kick in. it doesn't talk about putting a cert on the accessing device.
Would prefer auth off for local network to make it simpler.

Can someone point me in the rough direction that makes sense and is secure?
I don't want to port forward without some sort of end to end cert or/and authentication going on.

Is the premise of this https://www.domoticz.com/wiki/Native_se ... ts_Encrypt that you can only get in if you know the domain url?

Doesn't sound very secure or can you then generate private keys that you place on your devices, would they need updating every 3 months?

I think you talk about 2 different things here.
Authentication and encryption.

Authentication is the part where you work with users and such. Read about that over here:
https://sancla.com/domoticz/securing-do ... ntication/

Encryption is SSL certificates and Let's Encrypt. It's about HTTPS and making sure nobody can intercept your communication with Domoticz. Much like visiting your bank's website, you want to make sure you have a green lock visible in your browser. I don't have a guide ready for that but I think your already found some information for that.

By default both subjects are not configured and enabled in Domoticz.