Stack Overflow
Stack Overflow

Questions tagged [acme]

85 questions
6
votes
1 answer

Google Cloud DNS - how to restrict permission just to one zone for acme challenge?

is there a way to have Google Cloud IAM Service account restricted to only one zone in Coud DNS? I want to use this for automatic ACME DNS-01 certificate issuing, but I do not want to add full control of all domains/zones. I tried to set Condition…
Roman
  • 81
  • 4
5
votes
1 answer

Letsencrypt Stage PEM with fszlin/certes

I'm using fszlin/certes to generate LE certificates. I've downloaded the latest staging issuer PEM from Lets Encrypt and converted it to a Base64 String. byte[] base64PEM = Convert.FromBase64String(lePemContents); However, when I attempt to add…
Stuart Palmer
  • 191
  • 1
  • 1
  • 11
5
votes
2 answers

Traefik: "No ACME certificate generation required for domains" in the logs while using the default cert

I'm struggling with Let's Encrypt setup for my Docker Swarm. Traefik is started this way in my stack's compose file: image: traefik:v2.2 ports: - 80:80 - 443:443 - 8080:8080 command: - --api -…
Jean Claveau
  • 1,101
  • 1
  • 13
  • 15
5
votes
3 answers

gitlab letsencrypt http_authorization error

I've recently installed Gitlab CE on my Ubuntu server. My desired domain for running Gitlab is https://git.mydomain.com (This is a sample URL), so I prefered to use Lets Encrypt to enable SSL on the server. At the end of installation, I received…
Mohammad Saberi
  • 12,864
  • 27
  • 75
  • 127
4
votes
1 answer

Istio: How to redirect to HTTPS except for /.well-known/acme-challenge

I want the traffic thar comes to my cluster as HTTP to be redirected to HTTPS. However, the cluster receives requests from hundreds of domains that change dinamically (creating new certs with cert-manager). So I want the redirect to happen only when…
g_lasso
  • 141
  • 8
4
votes
0 answers

How to find the acme challenge response?

I'm using a django-letsencrypt and it requires me to enter in the acme challenge and the acme challenge response. I'm able to find the challenge but I'm not able to find the proper response to use. Where can I find the response? I'm using acme V2
pyCthon
  • 11,746
  • 20
  • 73
  • 135
3
votes
1 answer

Unable to use acme.sh with tls-alpn-01 to renew or issue a certificate

According to the official ACME.SH documentation link, issuing a certificate is as simple as running the following command: $ acme.sh --issue --alpn -d example.com However, I am getting the following error Error, can not get domain token entry…
Temperage
  • 711
  • 1
  • 8
  • 17
2
votes
0 answers

Creating Let's Encrypt certificate without root access and different port

I try to create a certificate without root access because my web apps will be creating/renewing certs automatically. I found acme.sh, i was able to create a certficate with non-root user over 80.port. However my application is working port 8000. Is…
MrTux01
  • 343
  • 3
  • 9
2
votes
1 answer

Golang ACMEv2 HTTP-01 challenge not challenging server

With this code I am attempting a manual HTTP-01 challenge to better understand how the process works. All the requests return 201/200 responses with the expected bodies, and I am able to successfully create the challenge. The ACME server never seems…
danthegoodman
  • 501
  • 4
  • 10
2
votes
1 answer

cert-manager.io/v1 Certificate no acme field

I am trying to migrate cert-manager to API v1, I was able to migrate the Issuer to ClusterIssue (the first part of the YAML). However, I am dealing with a breaking change that there is no more acme on kind Certificate apiVersion:…
Rodrigo
  • 135
  • 4
  • 45
  • 107
2
votes
0 answers

When using "tls-alpn-01" challenge for let's encrypt certs in kubernetes using traefik, I'm getting "acme: error: 400 Timeout during connect"

I'm following the tutorial to use traefik as the ingress and ingress controller for Azure Kubernetes Service (AKS) cluster. I'm using terraform to deploy the traefik (version 1.7.24) helm chart. resource "helm_release" "traefik" { name =…
srsn
  • 175
  • 11
2
votes
1 answer

acme challenge failed. Invalid response from http://service.domain1.com/.well-known/acme-challenge/xWsuGIi0JmuEuDzS5qPkVX3oHuzY2kNl0YGoU6HltRg

When I try to execute the command to add Lets Encrypt SSL Certificate for the following, I am getting an error. Could you please help me to correct the issue. Command run on the server to activate the LetsEncript SSL certificate sudo certbot run -a…
Charles George
  • 29
  • 1
  • 2
2
votes
2 answers

Amazon EC2 Linux SSL certbot-auto Account creation on ACMEv1 is disabled. ACMEv2 / RFC 8555. Amazon EC2 Linux SSL certbot-auto

I was trying to install a Lets Encrypt ssl certificate for my website on an Amazon EC2 Linux AMI Server. I followed the steps in the documentation: Tutorial: Configure SSL/TLS on Amazon…
Chris W
  • 61
  • 8
2
votes
0 answers

Traefik cluster + Consul KV + ACME - CERTS NOT RENEWED "Error calling Leadership listener: Existing key does not match lock use"

I'm running a traefik stack on docker with consul as a backend store. My cluster is made of three nodes and has traefik configured to renew certificates with ACME every 3 months automatically 30 days before expiry. However, the certs are not getting…
PixelatedPixie
  • 121
  • 3
  • 9
2
votes
1 answer

Docker jwilder/nginx-proxy and letsencrypt companion ACME Error

I trying to set up, what I believe to be a fairly simple site using nginx-proxy and docker-letsencrypt-nginx-proxy-companion to create an https secured site. I have read…
sosukeinu
  • 379
  • 4
  • 16
1
2 3 4 5 6