GenLeCertForNS icon indicating copy to clipboard operation
GenLeCertForNS copied to clipboard

Published 20 hours ago verified publisher icon j81blog

Validation via HTTPS (TLS-ALPN-01)

Open kuechn opened this issue 10 months ago • 1 comments

When neither DNS nor HTTP is possible (in very hardened setups), the TLS in-place validation on port 443 comes in mind;

https://letsencrypt.org/docs/challenge-types/ (https://datatracker.ietf.org/doc/html/rfc8737)

Posh-ACME supports it. On the ADC the "ALPN responder" has to be aware of this special TLS request. Did you ever had a look at this type?

kuechn avatar Apr 10 '24 12:04 kuechn

no, did not had any intentions with it. But if its requested, I can look at it some day. But that won't be in the foreseeable future.

j81blog avatar Jul 03 '24 13:07 j81blog