Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
18.7 Legacy Series
»
Create DNS override TXT records for ACME-02 LE challenge
« previous
next »
Print
Pages: [
1
]
Author
Topic: Create DNS override TXT records for ACME-02 LE challenge (Read 2736 times)
rodig0
Newbie
Posts: 1
Karma: 0
Create DNS override TXT records for ACME-02 LE challenge
«
on:
April 08, 2019, 11:44:27 am »
Hi,there
UFABET
is it somehow possible to create Unibound DNS override for TXT record? I only see A (AAAA) or MX records override.
Adding custom TXT records locally would be super useful for DNS ACME-02 challenge to generate wildcard LE certificates locally.
Thank in advance.
Logged
mitsos
Newbie
Posts: 47
Karma: 9
Re: Create DNS override TXT records for ACME-02 LE challenge
«
Reply #1 on:
April 08, 2019, 10:35:50 pm »
I don't think you quite understand how let's encrypt works. You aren't verifying the TXT records, they verify them through their server *then* sign the certificate. Your client only sees a "OK" or "not OK" response that is coming from them (and the certificate of course).
Otherwise you would generate a *.paypal.com certificate that correctly validates on your end user's browser (rendering the entire PKI useless).
A TXT record override could be useful, but for any other reason other than let's encrypt.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
18.7 Legacy Series
»
Create DNS override TXT records for ACME-02 LE challenge
