CCCHH Wiki

User Tools

Site Tools

You are here: start » infrastructure » services » acme_dns
infrastructure:services:acme_dns

This is an old revision of the document!

ACME DNS

service-urls:
http://https://acmedns.hamburg.ccc.de
host-fqdn:
acmedns.hosts.hamburg.ccc.de
netbox-link:
http://https://netbox.hamburg.ccc.de/virtualization/virtual-machines/85/
server:
servername
maintainer:
stb
ccchh-id-integration:
false

Description

acme-dns is a specialized name server that can be used to implent the ACME DNS-01 challenge.

We run an instance of acme-dns so we can more easily create Let's Encrypt certificates for hosts, in particular those that are not accessible from the Internet, and thus can't use the HTTP-01 challenge.

Configuration

See the Ansible repo. We are using [[https://github.com/oauth2-proxy/oauth2-proxy|oauth2-proxy|| to limit access to the register API endpoint to users that can log in through our Keycloak.

infrastructure/services/acme_dns.1769377597.txt.gz · Last modified: by stb
Except where otherwise noted, content on this wiki is licensed under the following license: CC0 1.0 Universal
CC0 1.0 Universal Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki