letsencrypt-dns-conoha

Overview

Script to get Let's Encrypt Wildcard SSL Certificate using DNS in ConoHa VPS.

Requirements

• CentOS7
• certbot 0.22.0+
• jq
• DNS to manage your domain with ConoHa VPS.

Setup

• Place code in your server.
• Copy .env.example to .env.
• Set region, tenant id, username and password in the .env.

Usage

• Test to get Wildcard SSL Certificate.

# certbot certonly \
--dry-run \
--manual \
--agree-tos \
--no-eff-email \
--manual-public-ip-logging-ok \
--preferred-challenges dns-01 \
--server https://acme-v02.api.letsencrypt.org/directory \
-d "<base domain name>" \
-d "*.<base domain name>" \
-m "<mail address>" \
--manual-auth-hook /path/to/letsencrypt-dns-conoha/create_conoha_dns_record.sh \
--manual-cleanup-hook /path/to/letsencrypt-dns-conoha/delete_conoha_dns_record.sh

• Get Wildcard SSL Certificate.

# certbot certonly \
--manual \
--agree-tos \
--no-eff-email \
--manual-public-ip-logging-ok \
--preferred-challenges dns-01 \
--server https://acme-v02.api.letsencrypt.org/directory \
-d "<base domain name>" \
-d "*.<base domain name>" \
-m "<mail address>" \
--manual-auth-hook /path/to/letsencrypt-dns-conoha/create_conoha_dns_record.sh \
--manual-cleanup-hook /path/to/letsencrypt-dns-conoha/delete_conoha_dns_record.sh

• Test to renew Wildcard SSL Certificate.

# certbot renew --force-renewal --dry-run

• Renew Wildcard SSL Certificate.

# certbot renew

References

• Pre and Post Validation Hooks
• ACME v2 Production Environment & Wildcards
• ConoHa API Documantation

Licence

This software is released under the MIT License.