I would like LE to target a bit neglected part of auditory here. I have multiple hosts covered with SSL certs from regular authorities like Comodo, both on public and private networks. I’m comfortable with the idea of replacing them with LE issued ones and automating whole process. I’m not comfort…

I too would like to see some sort of dns option soon especially if it allowed for cname following (as atm placing files in all cluster members for all domains that are clustered under the san cert aint easy) the cname following would just be nice plus for us as hosted websites are done via us or …

Reminder: per our Community Guidelines , don’t post +1’s to indicate you agree, since it makes it harder to see posts with new info. Instead, please like (:heart:) the first post in this thread. Thanks!

I’m looking at the case(s) where I want to use (non-HTTPS) certificate(s), and again having problem(s) with the HTTP file “dump” as these services are behind NATting firewall(s) and then to attempt to get HTTP (which is already NATted elsewhere) to the specific server without a different port (and …

Is there some kind of roadmap where progress on this highly anticipated feature can be tracked? Since it looks as if only Boulder needs some features added before we can start using it :slightly_smiling:

I’m looking forward to this too. All of my HTTP websites are just redirects to my HTTPS sites and having to open up an actual HTTP website just to do the cert upgrade every 90 days in a pain.

DNS-01 is enabled in production. https://twitter.com/letsencrypt/status/689919523164721152

Cool! How does it work? I can’t find documentation anywhere.

Thanks so much for this. I was able to get it working a few hours ago.

[image] gfunkdave: Cool! How does it work? I can't find documentation anywhere. The protocol specification is in ACME: draft-ietf-acme-acme-01 There are a few clients that support it already. letsencrypt.sh is one I know of.

Shouldn't verification via DNS record be a priority?

Issuance Tech

My1 January 20, 2016, 2:04pm 44

you dont even have to open an HTTP site. the http-01 already accepts redirects, so if you keep the path and stuff while redirecting then it should work without a problem.

Topic		Replies	Views
[Suggestion] Let's Encrypt operated, TXT-only DNS Hosting for DNS challenges Feature Requests	19	8850	February 14, 2018
Other Authentication Methods Issuance Tech	37	3641	January 21, 2019
Help me understand acme-dns Issuance Tech	24	21290	May 31, 2018
DNS challenge is in staging Feature Requests	49	28082	February 10, 2016
DNS challenge and CN record - basics? Help	21	876	January 13, 2024

Shouldn't verification via DNS record be a priority?

Related topics