Revalidate certificate after switching to DNS validation


#1

I am using the getssl script and want to switch to DNS validation. I changed the settings in the getssl.cfg and tested the procedure successfully with a new subdomain. However, for all my existing domains the script tells me, “xxxx is already validated”, which is correct because it was validated before by the HTML method. However, I want it revalidated by the DNS. How can that be done?


#2

Hi @eehmke

you must deactivate your challenges.

You can find details there:

7.5.2 Deactivating an Authorization

https://tools.ietf.org/html/draft-ietf-acme-acme-16#page-54

But your client must support that, so (using #client-dev) you have to create a command.