I'm trying to configure ACME to obtain a Let's Encrypt wildcard certificate via DNS challenge, but when I enter *.domain.it it doesn't accept it. Does anyone know how to do this or if it's possible? The goal would obviously be to have a single certificate for the entire domain and then distribute it via the hypervisor to all the VMs.
let's encrypt wildcard
- Thread starter h725
- Start date
Hi,
This is a common point of confusion with Proxmox's ACME UI — it looks like it should accept a wildcard, but the input field validates against a simple hostname pattern and rejects the * character. Use the API/CLI directly
Proxmox does support wildcard certificates via ACME DNS challenge, but you have to configure it outside the GUI for the domain entry.
Go to Datacenter → ACME → DNS Plugins and add your provider (Cloudflare, INWX, etc.). Make sure the plugin is working with a normal domain first.
SSH into your PBS/PVE node and run:
This is a common point of confusion with Proxmox's ACME UI — it looks like it should accept a wildcard, but the input field validates against a simple hostname pattern and rejects the * character. Use the API/CLI directly
Proxmox does support wildcard certificates via ACME DNS challenge, but you have to configure it outside the GUI for the domain entry.
Go to Datacenter → ACME → DNS Plugins and add your provider (Cloudflare, INWX, etc.). Make sure the plugin is working with a normal domain first.
SSH into your PBS/PVE node and run:
Code:
proxmox-backup-manager acme order --domains "*.domain.it,domain.it" \
--contact "mailto:admin@domain.it"