|
|
# acme4netvs documentation
|
|
|
|
|
|
To obtain TLS certificates using the [DNS-01]() challenge of the [ACME protocol]() (as
|
|
|
used by [Let's Encrypt]()) an [ACME client]() needs to create specific DNS records.
|
|
|
acme4netvs provides plugins for a selected set of ACME clients that perform these
|
|
|
DNS-01 challenges against KIT's DNS infrastructure.
|
|
|
|
|
|
This plugin creates and deletes the required records to then DNS-01 challenge
|
|
|
using the [NETVS]() [API]() (v3.1 and later).
|
|
|
|
|
|
## getting started
|
|
|
|
|
|
Please follow these steps.
|
|
|
|
|
|
### Choose an ACME client
|
|
|
|
|
|
Let's encrypt maintains a [list of ACME clients](). acme4netvs currently
|
|
|
supports these clients out-of-the-box:
|
|
|
|
|
|
* [certbot]()
|
|
|
* [dehydrated]()
|
|
|
|
|
|
These plugins only differ in their calling convention. To use other ACME
|
|
|
clients users may either write their own wrapper scripts or open an issue in
|
|
|
the acme4netvs repo.
|
|
|
|
|
|
### get netvs token
|
|
|
|
|
|
### certbot
|
|
|
|
|
|
### dehydrated |