DNS plugin support for Windows server 2016 DNS?


#1

Is there a DNS plugin that works with Windows server 2016 DNS?


#2

Does anyone even use Windows server 2016 for DNS?


#3

following, looking for a solution to leverage acme plugin on pfsense and my internal windows server 2016 dns (subdomain.TLD.com)


#4

This is possible with a win-acme hook, but the arguments win-acme passes to its DNS hooks don’t really map well to the arguments dnscmd takes, so you have to hardcode stuff in the hooks:

letsencrypt --validationmode dns-01 --dnscreatescript C:\create-dns.bat --dnsdeletescript C:\delete-dns.bat --validation script --domain secure.example.com

create-dns.bat:

set APEX_DOMAIN=example.com
set SUBDOMAIN=secure
set TOKEN=%3%
dnscmd . /RecordAdd %APEX_DOMAIN% _acme-validation.%SUBDOMAIN% txt %TOKEN%

delete-dns.bat:

set APEX_DOMAIN=example.com
set SUBDOMAIN=secure
dnscmd . /RecordDel %APEX_DOMAIN% _acme-validation.%SUBDOMAIN% txt

A proper hook would probably parse a dnscmd query to figure out the apex domain without hardcoding it.


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.