For my internal PVE nodes I want to get ACME working. Since I'm behind a NAT firewall and the single IP's port 80 is not available, I'm trying with the DNS API challenge.
Unfortunately, my own web hoster does not provide a DNS API, so I forwarded a subdomain to 1984.hosting, which has a built-in...
The title says pretty much it all. :)
I'm writing an API client and a Terraform provider for Proxmox VE. So far the `version` and `storage` endpoints are working (albeit not necessarily complete :D ). I'm now trying to create an ACME account but I get a `403 Permission check failed (user !=...
Would it be possible to add the TLS-ALPN challange method to ProxMox's ACME implementation? I don't have the ability to use port 80 or DNS for one of my servers.
renewing of our let's encrypt certificates worked flawlessly until now.
Any ideas what could have changed with the recent updates towards PVE 7.2
root@jupiter2:~# pvenode acme cert renew
Loading ACME account details
Placing ACME order
ich habe aktuell Proxmox neu installiert und gerade meine Festplatten sind richtig gemountet. Danke nochmals an @Dunuin
Habe jetzt ein anliegen bezüglich der Zertifizierung.
Ich habe ein ACME Account eingerichtet in Proxmox als Default "Let's Encrypt V2".
Da steht auch das es...
I am seeing failures to obtain certs via letsencrypt in proxmox. The documentation shows that it simply leverages the official acme.sh, and I am pointed there for configuration information.
Following documentation found here: https://pve.proxmox.com/wiki/Certificate_Management:
# pvenode acme...
Hello, we are using PMG v 7.1-2
We started using the integrated ACME, but when the certificates are automatically generated, for some reason, they always contain outdated Let's Encrypt R3 certificate chain which expired in 2021.
This means that TLS with our customers stops working every time...
zunächst vorweg, wir sind noch recht frisch bei Proxmox und experimentieren gerade ein wenig damit herum um bei den vielen Möglichkeiten den Durchblick zu bekommen. Aber es ist einfach großartig :)
Ich bin so zB erst vor kurzem auf die Möglichkeiten mit den (ACME)Zertifikaten gestoßen...
I'm trying to setup PVE to automatically challenge my DNS with the google cloud api but when i tell it to order my certificate i get an error. It keeps saying it cant access the directory /nonexistent/.config.
I dont know if i should post this here on or on another thread for acme.sh or gcloud...
I want to add an ACME account with a custom directory (-> self hosted step-ca)
Because you cannot add an acme account with a non-letsencrypt directory via the GUI, I used the command line
on proxmox-back-server, I will get the following error:
root@pbs:~# proxmox-backup-manager acme...
I love the new ACME certificate feature available in PVE 6/7. I created an internal ACME server, and tested it using one of our PVE7 servers. After some infrastructure changes occurred, the ACME server was moved to a new hostname, for example, `acme.example-a.com` ->...
I'm trying to setup Let's encrypt/ACME with the transip DNS plugin. Both automated and from the command line (pvenode acme cert renew) will have the dns_transip.sh script throw an error:
# pvenode acme cert renew
Loading ACME account details
Placing ACME order
On my new proxmox 6.4 I go to datacenter ACME and want to add a new ACME account. I click Add, and Register Account opens state "loading...". After a while there is an error message "connection error - timeout"
But the server has full connectivity. Static public IPv4,IPv6.
ACME does'nt listen on port 80 in IPv6. It listen port 80 only in IPv4.
For domain names with only record type AAAA, ACME does'nt work on Proxmox VE.
I haven't software is listen on the port 80 in IPv4 or IPv6.
I took a screenshot of the ACME logs and the "ss -atlp" command when...
I have a domain I already use for my personal website: example.tld
I would like to use LetsEncrypt to create some certificates for use on my internal network such as plex.internal.example.tlc
To start, I registered my LetsEncrypt account under the Certificates > ACME, however now when I click...
I am trying to work with the ACME account and certificates in Proxmox VE.
Unfortunately, when I try and do actions like pvenode acme account register second <email> or pvenode acme account deactivate default. The command fails with:
error during cfs-locked 'acme-second' operation: Registration...
I accidentally modified/destroyed the dns_namecheap script. is there any way to replace it or recover the data as it was?
I can't undo my changes since I deleted the backup file that I created (wanted to remove the modified file and used keyboard completion and deleted the backup file :( )...
I am using Proxmox Virtual Environment 6.3-3, and using a DuckDNS, for example xyz.duckdns.org.
I want to get a certificate from Let's Encrypt using the web UI of PVE. I am able to create an account and challenge plugin in Datacenter. However, errors occur when I want to order a new certificate...
Is there a way through SSH to obtain the TXT record from LetsEncrypt such that I could initially configure LE SSL certs within a node and then simply make a renewal request through the GUI? Thus, the auto renewal of SSL certs would work going forward?
I ask as I've yet to find a workaround...