Our web hosting is on one server, and our email service is from a provider on a different server.
I need to create a certificate to install on the mail server, where I have no shell access and there is no web server.
I wouldn’t have this problem if the email server presented a certificate valid for a domain that points to that server, but they don’t.
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Do I have to create a DNS record for mail.cataloochee.com to create a certificate for that subdomain, or can another be created for the purpose of authentication? I ask because mail.cataloochee.com is currently in use, and modifying it substantially would disrupt service to users.
The dns-01 challenge requires to put a TXT record on the _acme-challenge subdomain (if I’m not mistaken, could be something slightly different) of the hostname you want a certificate for.