search

angel333 / certbot-he-hook

Certbot (Let's Encrypt) auth hook script for the Hurricane Electric DNS service
MIT License
51 stars 19 forks source link
certbot letsencrypt

readme

Certbot (Let's Encrypt) auth hook script for the Hurricane Electric DNS service (certbot-he-hook)

With this script, domains that are hosted at the Hurricane Electric DNS service are verified automatically using the DNS-01 validation, (as opposed to e.g. webroot validation). It adds a special TXT DNS record for the domain and then removes it when the verification is finished.

Example usage:

  1. Create a new certificate for a domain:

    HE_USER= HE_PASS= certbot certonly \ --preferred-challenges dns \ --email your@email.com \ --manual \ --manual-auth-hook /path/to/certbot-he-hook.sh \ --manual-cleanup-hook /path/to/certbot-he-hook.sh \ --manual-public-ip-logging-ok \ --domain

  2. Renew certificates for all domains:

    HE_USER= HE_PASS= certbot renew \ --preferred-challenges dns \ --manual-auth-hook /path/to/certbot-he-hook.sh \ --manual-cleanup-hook /path/to/certbot-he-hook.sh \ --manual-public-ip-logging-ok

Alternatively, instead of supplying HE_USER and HE_PASS, a session ID can be passed through HE_SESSID. Supplying a session ID is a bit faster.

Bugs

Feel free to submit bugs on the Github page or to me@ondrejsimek.com.

License

MIT