$ sudo certbot certonly --manual --preferred-challenges dns-01 -d *.odns.info --manual-auth-hook /home/tmaeno/dnsdata/txt.sh

Congratulations! Your certificate and chain have been saved at:
   /etc/letsencrypt/live/odns.info/fullchain.pem
   Your key file has been saved at:
   /etc/letsencrypt/live/odns.info/privkey.pem

/log-2

1. subdomain _acme-challenge

sudo certbot certonly --manual --preferred-challenges dns-01 -d *.odns.info

1.1. log

Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator manual, Installer None
Obtaining a new certificate
Performing the following challenges:
dns-01 challenge for odns.info

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
NOTE: The IP of this machine will be publicly logged as having requested this
certificate. If you're running certbot in manual mode on a machine that is not
your server, please ensure you're okay with that.

Are you OK with your IP being logged?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: 
(Y)es/(N)o: y

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Please deploy a DNS TXT record under the name
_acme-challenge.odns.info with the following value:

JhCaBDdI0PlUTZAUFlm2FvYVpNTQ_NtG4QbJE_HGSNY

Before continuing, verify the record is deployed.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Press Enter to Continue
Waiting for verification...
Cleaning up challenges

IMPORTANT NOTES:
 - Congratulations! Your certificate and chain have been saved at:
   /etc/letsencrypt/live/odns.info/fullchain.pem
   Your key file has been saved at:
   /etc/letsencrypt/live/odns.info/privkey.pem
   Your cert will expire on 2022-04-28. To obtain a new or tweaked
   version of this certificate in the future, simply run certbot
   again. To non-interactively renew *all* of your certificates, run
   "certbot renew"
 - If you like Certbot, please consider supporting our work by:

   Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
   Donating to EFF:                    https://eff.org/donate-le

1.2. renew

$ sudo certbot certonly --manual --preferred-challenges dns-01 -d *.odns.info
[sudo] password for tmaeno: 
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator manual, Installer None
Cert not yet due for renewal

You have an existing certificate that has exactly the same domains or certificate name you requested and isn't close to expiry.
(ref: /etc/letsencrypt/renewal/odns.info.conf)

What would you like to do?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: Keep the existing certificate for now
2: Renew & replace the cert (limit ~5 per 7 days)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate number [1-2] then [enter] (press 'c' to cancel): 2
Renewing an existing certificate

IMPORTANT NOTES:
 - Congratulations! Your certificate and chain have been saved at:
   /etc/letsencrypt/live/odns.info/fullchain.pem
   Your key file has been saved at:
   /etc/letsencrypt/live/odns.info/privkey.pem
   Your cert will expire on 2022-05-06. To obtain a new or tweaked
   version of this certificate in the future, simply run certbot
   again. To non-interactively renew *all* of your certificates, run
   "certbot renew"
 - If you like Certbot, please consider supporting our work by:

   Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
   Donating to EFF:                    https://eff.org/donate-le

1.3. renew

$ sudo certbot renew

No renewals were attempted.


CategoryDns CategoryWatch CategoryTemplate

MoinQ: Letsencrypt/certbot/odns.info (last edited 2022-02-18 10:18:34 by ToshinoriMaeno)