acme

Hi how to automate the use of certificates that are issued by your local certification authority? deployed my center, I receive a certificate from it through certbot and it is located /etc/letsencrypt/live/%FQDN I wanted to put files from /etc/letsencrypt/live/%FQDN into /etc/pve/local through...

Hello, I want to ask you how to change the port of the HTTP daemon, which is started when the certificates order is triggered. I would prefer 8080 for example or whatever else. I am getting "Failed to initialize HTTP daemon" error at the end of the task because my 80 port is being used by...

I am currently unable to find ACME under the datacenter dashbaord of Proxmox 7.2.

Hello, I can't seem to find any doc or description of the format for supplying "API data" to an ACME dns-01 challenge using the Azure plugin. I'm asking about the expected format of the parameters that need to be passed to the plugin via this dialog: I tried using the CLI but it returns an...

I use a different hostname for SMTP and API/GUI. The certificates are separate. However, I want to understand what the best practice is because I may have done this reverse from what it should be. PMG IP: 192.0.2.1 The ACME settings are: mx.example.com -> smtp hostxyz123.example.com -> api...

I was able to successfully get a Lets Encrypt cert for my PVE box, using the domain: PVE.domain.com, but I am only able to access the server as such. If I connect to the server locally at https;//PVE:8006/, I get an err_cert_common_name_invalid error in chrome. Is there any way to add SANs to...

I'm using PVE's ACME client to get a certiifcate from my ACME server. I added two names: "domain.com" and "172.16.0.1" in the control panel. The certificate I finally got has its Subject Alternative Name = "DNS:domain.com,DNS:172.16.0.1". It's invalid. It should be...

For my internal PVE nodes I want to get ACME working. Since I'm behind a NAT firewall and the single IP's port 80 is not available, I'm trying with the DNS API challenge. Unfortunately, my own web hoster does not provide a DNS API, so I forwarded a subdomain to 1984.hosting, which has a built-in...

The title says pretty much it all. :) I'm writing an API client and a Terraform provider for Proxmox VE. So far the `version` and `storage` endpoints are working (albeit not necessarily complete :D ). I'm now trying to create an ACME account but I get a `403 Permission check failed (user !=...

Hello, Would it be possible to add the TLS-ALPN challange method to ProxMox's ACME implementation? I don't have the ability to use port 80 or DNS for one of my servers. https://github.com/acmesh-official/acme.sh/wiki/TLS-ALPN-without-downtime Thanks, Daniel

Hi, renewing of our let's encrypt certificates worked flawlessly until now. Any ideas what could have changed with the recent updates towards PVE 7.2 root@jupiter2:~# pvenode acme cert renew Loading ACME account details Placing ACME order Order URL...

Hallo Leute, ich habe aktuell Proxmox neu installiert und gerade meine Festplatten sind richtig gemountet. Danke nochmals an @Dunuin Habe jetzt ein anliegen bezüglich der Zertifizierung. Ich habe ein ACME Account eingerichtet in Proxmox als Default "Let's Encrypt V2". Da steht auch das es...

I am seeing failures to obtain certs via letsencrypt in proxmox. The documentation shows that it simply leverages the official acme.sh, and I am pointed there for configuration information. Following documentation found here: https://pve.proxmox.com/wiki/Certificate_Management: # pvenode acme...

Hello, we are using PMG v 7.1-2 We started using the integrated ACME, but when the certificates are automatically generated, for some reason, they always contain outdated Let's Encrypt R3 certificate chain which expired in 2021. This means that TLS with our customers stops working every time...

Hallo, zunächst vorweg, wir sind noch recht frisch bei Proxmox und experimentieren gerade ein wenig damit herum um bei den vielen Möglichkeiten den Durchblick zu bekommen. Aber es ist einfach großartig :) Ich bin so zB erst vor kurzem auf die Möglichkeiten mit den (ACME)Zertifikaten gestoßen...

I'm trying to setup PVE to automatically challenge my DNS with the google cloud api but when i tell it to order my certificate i get an error. It keeps saying it cant access the directory /nonexistent/.config. I dont know if i should post this here on or on another thread for acme.sh or gcloud...

Hey, I want to add an ACME account with a custom directory (-> self hosted step-ca) Because you cannot add an acme account with a non-letsencrypt directory via the GUI, I used the command line on proxmox-back-server, I will get the following error: root@pbs:~# proxmox-backup-manager acme...

Hey All, I love the new ACME certificate feature available in PVE 6/7. I created an internal ACME server, and tested it using one of our PVE7 servers. After some infrastructure changes occurred, the ACME server was moved to a new hostname, for example, `acme.example-a.com` ->...

Hi, I'm trying to setup Let's encrypt/ACME with the transip DNS plugin. Both automated and from the command line (pvenode acme cert renew) will have the dns_transip.sh script throw an error: # pvenode acme cert renew Loading ACME account details Placing ACME order Order URL...

On my new proxmox 6.4 I go to datacenter ACME and want to add a new ACME account. I click Add, and Register Account opens state "loading...". After a while there is an error message "connection error - timeout" But the server has full connectivity. Static public IPv4,IPv6.