User:Paul/sandbox/Create wildcard certificate
Jump to navigation
Jump to search
username@servername:~$ sudo certbot certonly --manual --preferred-challenges=dns --email username@example.com --server https://acme-v02.api.letsencrypt.org/directory --agree-tos -d example.com -d *.example.com
The challenge requires the creation of a DNS TXT record with a subdomain and unique challenge code.
It is critical to set the TTL of the DNS TXT record to the lowest possible time allowed by the DNS server (e.g., Namecheap allows 1 minute TTL). This is because the record must be verified twice using two different unique challenge codes.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Please deploy a DNS TXT record under the name _acme-challenge.example.com with the following value: wLeG9DofhfXcZWsWcSSEthyHpfSNl8vPNMPETGUVMNk Before continuing, verify the record is deployed. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Press Enter to Continue - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Please deploy a DNS TXT record under the name _acme-challenge.example.com with the following value: InKlPb6UzORwha3XdOzT5O4zbUps5yYUGjw8e1faYps Before continuing, verify the record is deployed. (This must be set up in addition to the previous challenges; do not remove, replace, or undo the previous challenge tasks yet. Note that you might be asked to create multiple distinct TXT records with the same name. This is permitted by DNS standards.) - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Press Enter to Continue