DEV Community

loading...

Discussion on: Let's Encrypt: Renew Wildcard Certificate With Certbot

Collapse
joglomedia profile image
Edi Septriyanto

Hi,
is it possible to renew wildcard domain automatically without dns intervention?

Collapse
nabbisen profile image
Heddi Nabbisen Author

Hi, Edi,

@daniel15 kindly told me there is help named "acme-dns" :)

The overview described in github repository is:

Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely.

Relatively, it seems more difficult than to use certbot renew and cron.

Besides, I haven't used it yet because I'm moving to OpenBSD's acme-client.

Collapse
raffieyeah profile image
Rafael

Heddi, thanks for sharing your tutorial. Reading trough the manual, doesn't seem like the openbsd acme-client supports DNS challenge. Any thoughts?

Thread Thread
nabbisen profile image
Heddi Nabbisen Author

Hello, Rafael.

Sorry that I knew little about non-http-01 challenges with OpenBSD's acme-client.
You might be perhaps right. acme-client's documentation says:

acme-client implements the “http-01” challenge type

According to the original writer, Kristaps, it had -t option to use custom challenges, but they were "too system-specific to provide in a safe manner".

Thread Thread
raffieyeah profile image
Rafael

Thanks!