GenLeCertForNS
GenLeCertForNS copied to clipboard
j81blog
This script helps you to create a Let's Encrypt certificate for your NetScaler
When neither DNS nor HTTP is possible (in very hardened setups), the TLS in-place validation on port 443 comes in mind; https://letsencrypt.org/docs/challenge-types/ (https://datatracker.ietf.org/doc/html/rfc8737) Posh-ACME supports it. On the ADC the...
Hi, great script! We are currently working on the implementation for our environment. Two questions came up: 1. We would like to enable the CS for LE only during the...
Using godaddy dns validation cert1 is going fine. also with wildcard cert2: NOTE: -CN or -SAN contains a wildcard entry, continuing with the "dns" validation method! -CN........................: mydomain.eu -SAN(s)....................: *.mydomain.eu...
Hi, Isn't it possible to use Posh-ACME's DnsAlias parameter (https://poshac.me/docs/v4/Functions/Publish-Challenge/#-dnsalias) with your script? We use CNAME records to delegate answering the challenge to separate DNS zone.
Hello! is it possible to add Send ACK delay parameter, some DNS providers has propagation time about 1 hour? New-PACertificate has -DNSSleep parameter. DNS - Validate Records -Checking records..........: ****...
Is it possible to deploy the same certificate to more than one Netscaler? We have a GSLB setup with a couple of Netscalers with identical configs.
Running this script under PS 7 generates this error: ``` 2020-06-18 13:05:31:2726 INFO DNS-VALIDATION Checking non-matching DNS Records 2020-06-18 13:05:31:2997 INFO DNS-VALIDATION All IP Addresses match. 2020-06-18 13:05:31:3125 INFO CHECKORDERVALIDATION...
Hello! It should be possible to set Traffic Domain for ADC CS vserver, LB vserver, LB service and server. I was able to make it work with additional payload parameter:...
It should be possible to delegate _acme-challenge. to the ADC and through the script generate the challenge DNS response automatically.
On the ADCs the "name" entries are quite long (long FQDN). Why is the paramater "CertKeyNameToUpdate" quite short? [ValidateLength(1, 31)] [String]$CertKeyNameToUpdate The spec says up to 128, if I'm reading...