There was a problem loading the comments.

ACME / LetsEncrypt

Support Portal  »  Knowledgebase  »  Viewing Article

  Print

Using the TXT endpoints with ACME / Let's Encrypt

ZoneEdit provides TXT create and delete endpoints for ACME DNS-01 validation:

https://dynamic.zoneedit.com/txt-create.php?host=_acme-challenge.example.com&rdata=
https://dynamic.zoneedit.com/txt-delete.php?host=_acme-challenge.example.com&rdata=

Use HTTP Basic Auth with:

  • username: your ZoneEdit username
    • password: your ZoneEdit Dynamic DNS auth token

Using a Dynamic DNS auth token is strongly recommended instead of your account password.

The host value should be the full ACME challenge hostname, such as:

_acme-challenge.example.com

For wildcard certificates, do not include the wildcard in the challenge hostname. For *.example.com, use:

_acme-challenge.example.com

The rdata value is the TXT validation value supplied by your ACME client.

Helper Script

A helper script for Certbot/manual DNS-01 validation is available here:

https://github.com/ZONEEDIT_ORG/zoneedit-acme-dns01

Example:

export ZE_USER='your-zoneedit-login'
export ZE_DYN_TOKEN='your-dynamic-dns-token'

certbot certonly
--manual
--preferred-challenges dns
--manual-auth-hook "/path/to/zoneedit-acme-dns01.sh auth"
--manual-cleanup-hook "/path/to/zoneedit-acme-dns01.sh cleanup"
-d example.com
-d '*.example.com'

The auth hook creates the required TXT record. The cleanup hook deletes only the exact TXT value created for that validation.


Share via
Did you find this article useful?  

Self-Hosted Help Desk Software by SupportPal
© ZoneEdit