Mass registration on a single domain from a router vendor

pfg · December 29, 2015, 3:01pm

That sounds like it should work. So your general workflow would be something like:

Push the router’s WAN address to your DNS so the A record for serialnumber.router.management gets set.
Spawn a publicly-available web server on port 80 or 443 (which you probably already have for the management UI) and serve the challenge files/SNI challenge.
Let your ACME client do its magic and install the resulting certificate.
Repeat steps 2 and 3 automatically every 2-3 months.

Sounds like a nice use-case for Let’s Encrypt!

Topic		Replies	Views
Rate limit cert per domain Issuance Policy	2	2628	January 21, 2016
Please consider having "subdomain+domain" not be subject to the same 5/7-days rate limit Issuance Policy	6	4150	February 20, 2016
Rate Limit Increase Request 1M+ domains Issuance Policy	6	1418	October 31, 2019
Rate limit override for certs issued for a domain delegated to a customer - who should request it Issuance Tech	3	53	March 7, 2025
7 registrations per week-limitation Issuance Policy	5	5007	March 16, 2016