Since the #server-config category is closed, I wasn’t exactly sure where to put this. And since it’s related to my own ACME client, this seemed like the next best place.
I’ve been playing around with using Let’s Encrypt certs on internal Active Directory domain controllers recently and I wrote a blog post about the experience that I thought people might find useful. As it turns out, it’s not even that hard assuming your domain meets the typical requirements for a public cert and you’ve got access to your external DNS zone.