Can I use Let's Encrypt if I only possess one subdomain?

My question is kinda similar to this one: Certificate for just a subdomain

Let’s say that is running on server A without HTTPS. The guys running the site has hired me to build which I host on server B. They don’t give me access to server A. They just point the records in server A for to server B’s IP address.

Can I still use Let’s Encrypt?

Yes, you only need to demonstrate control / ownership of to obtain a certificate for that subdomain.


It’s good news, then.

Now I’d like to know how exactly I’d demonstrate such control.

DNS-01 validation uses a TXT record for

HTTP-01 validation uses a file in

TLS-SNI-01 validation connects to with a weird SNI hostname for a special certificate.

So, HTTP-01 and TLS-SNI-01 just require the ability to run a web server, and DNS-01 requires control over one record.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.