DNS validation needs someone (or a DNS plugin for Certbot) to add a DNS record each time the certificate renews (by default Certbot renews 30 days before expiration. This works very well if your DNS provider is supported by one of certbot's plugins, but not as well if you have to update it manually. I'm not sure if there is a way to integrate it into our current DNS setup.
On Fri, Oct 7, 2022 at 2:09 PM Stephen Smoogen <ssmoogen@xxxxxxxxxx> wrote:
_______________________________________________--On Fri, 7 Oct 2022 at 14:39, Nick Bebout <nick@xxxxxxxxxx> wrote:I don't think we can (easily) make it keep renewing the Let's Encrypt cert, as LE requires DNS validation for wildcard certs. I did the validation manually. I could probably patch Ansible to not overwrite my config changes, if we want to go that route.What is needed for DNS validation? A constantly updated DNS record or something else?Stephen Smoogen, Red Hat AutomotiveLet us be kind to one another, for most of us are fighting a hard battle. -- Ian MacClaren
infrastructure mailing list -- infrastructure@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to infrastructure-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/infrastructure@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
_______________________________________________ infrastructure mailing list -- infrastructure@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to infrastructure-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/infrastructure@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue