I am provisioning 1000 servers on AWS and I need to have LetsEncrypt certificates on every node. I do not see that this is possible with current LetsEncrypt setup.
- Rate limit:
The main limit is Certificates per Registered Domain , (50 per week). A registered domain is, generally speaking, the part of the domain you purchased from your domain name registrar. For instance, in the name
www.example.com, the registered domain is
new.blog.example.co.uk, the registered domain is
example.co.uk. We use the Public Suffix List to calculate the registered domain.
- Validation methods
I do not want (and not allowed) to leak out anything to 3rd parties, meaning that verification cannot live in DNS. I would be ok to use the HTTP way of verification if I could limit the verification only to LetsEncrypt servers. Does anybody know what is their IP range?
What do other people do when need to have a large amount of certs from LetsEncrypt? Should I just purchase a CA and issue my own certs instead?
Thanks in advance.