OPNsense Forum

Archive => 17.7 Legacy Series => Topic started by: Ren on October 30, 2017, 06:39:56 pm

Title: LetsEncrypt WIKI/Documentation
Post by: Ren on October 30, 2017, 06:39:56 pm

Hey Guys,

I'm currently trying to locate documentation on the LetsEncrypt plugin. I'm running into validation errors when trying validate my domain using the duckdns API. Thus, i want to verify if my configuration is correct using the documentation.

Title: Re: LetsEncrypt WIKI/Documentation
Post by: fabian on October 30, 2017, 08:11:08 pm

For this plugin there is no documentation - maybe fraenki adds it some day. Somebody may be able to help you if you add an error message here.

Title: Re: LetsEncrypt WIKI/Documentation
Post by: Ren on October 31, 2017, 03:56:57 am

Ok in most fields i do not know what info is needed as i've never setup LetsEncrypt certificate Below is current configuration

Under Accounts
NAME: dnyamic dns name
Email: email account associated with duckdns account

Under Validation Methods
Name: Duckdns
Description: DuckDNS Validation
Challenge Type DNS-01
DNS Service: DuckDNS API
Sleep Time: 120
API Token: MY DUCKDNS TOKEN


Under Certificates
Common Name: dynamic dns name
Description: Home
Alt Name:
LE Account: Account Above
Validation Methon: Validation Above

Currently im unable to generate a certificate for my dynamic dns account as im running into validation error when requesting a certificate.

Code: [Select]

[Mon Oct 30 10:49:57 EDT 2017] Please check log file for more details: /var/log/acme.sh.log
[Mon Oct 30 10:49:57 EDT 2017] _on_issue_err
[Mon Oct 30 10:49:57 EDT 2017] skip dns.
[Mon Oct 30 10:49:57 EDT 2017] _clearupdns
[Mon Oct 30 10:49:57 EDT 2017] No need to restore nginx, skip.
[Mon Oct 30 10:49:57 EDT 2017] pid
[Mon Oct 30 10:49:57 EDT 2017] Create domain key error.

The private key and conf were created in /var/etc/acme-client/home/$DOMAIN_NAME_HERE but i wasn't issued a cert

Title: Re: LetsEncrypt WIKI/Documentation
Post by: franco on October 31, 2017, 09:03:53 am

Frank added a tutorial to his first PR, maybe we can take this as a base for the docs:

https://github.com/opnsense/plugins/pull/66


Cheers,
Franco

Title: Re: LetsEncrypt WIKI/Documentation
Post by: Ren on November 01, 2017, 05:14:06 am

Thank you. That actually helped. On the duckdns API line i had to format the data like the below

https://www.duckdns.org/update?domains=$DOMAIN&token=$TOKENHERE&ip=

Title: Re: LetsEncrypt WIKI/Documentation
Post by: bulmaro on November 21, 2017, 06:15:56 pm

I am in need of configuring LetsEncrypt, I do not have much knowledge on the subject. I currently have the ddns with noip.com, someone can help me with the steps to configure my https.

I appreciate the attention.

Title: Re: LetsEncrypt WIKI/Documentation
Post by: Ren on November 21, 2017, 08:22:40 pm

Quote from: bulmaro on November 21, 2017, 06:15:56 pm

I am in need of configuring LetsEncrypt, I do not have much knowledge on the subject. I currently have the ddns with noip.com, someone can help me with the steps to configure my https.

I appreciate the attention.

I'm not familiar with the no-ip DDNS service but hopefully i can assist a little. What have you configured so far ?

Title: Re: LetsEncrypt WIKI/Documentation
Post by: bulmaro on November 24, 2017, 06:40:24 pm

I thank you for your kind attention, you help me indicate some domain provider to be able to do laboratory test.
thank you very much.