I’m new to Let’s Encrypt and it’s very cool. I work for a company that uses Windows Server 2016 as their back-end, so things are not quite as straight-ahead as an open source solution for Let’s Encrypt.
I’ve found a great solution with WinACME v184.108.40.206 for my Production machines, but I’d like to find a way to setup Let’s Encrypt for a “STAGE” Server.
In my case, the STAGE Server is just like Production, but doesn’t have resolvable IP’s to the wide web.
Ideally I’d like to continue to use the WinACME v220.127.116.11 that I mentioned before.
I’ve been reading around seeing that one way to authenticate maybe using DNS, where Let’s Encrypt would generate a TXT file and I could place that into the Hosted Zone file and confirm ownership that way.
Basically, if anyone could suggest a good architectural solution that would be awesome.
Windows Server 2016
Amazon (EC2 & Route 53) for Private IP Addresses