cvazeem
September 25, 2022, 4:03pm
1
Hi,
I have setup nginx webserver with CentOS 8 stream. My question is how do, Certbot verifies the domain ownership?
Is it by uploading a file at the root directory of the domain or how?
How can I change the behavior, ie, the way Certbot verifies the domain ownership?
Which is the best method?
Thanks
1 Like
Osiris
September 25, 2022, 4:20pm
2
Certbot does not verify ownership, the Certificate Authority (CA) does. By default, Certbot uses Let's Encrypt (LE) as the CA.
You can learn more about how LE works here: How It Works - Let's Encrypt and the different challenge types here: Challenge Types - Let's Encrypt
Next, you can read about how to use Certbot here: User Guide — Certbot 1.30.0 documentation
7 Likes
cvazeem
September 26, 2022, 4:44am
3
@Osiris I see, CA is not creating a file in my root directory. Also, I haven't added anything to DNS. Then, which method, CA is using to verify domain authorship?
Thanks
1 Like
Osiris
September 26, 2022, 5:19am
4
Well, the CA does give the ACME client (Certbot in your case) the instruction to put a file in a certain place under the root directory and the client would have the task to do so.
4 Likes
rg305
September 26, 2022, 5:30am
5
This explains the ways one can prove control:
3 Likes
system
Closed
October 26, 2022, 5:31am
6
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.