tls-sni-01challenge. During challenges, traefik is serving challenge certificates. I wonder if it's possible to use mutual authentication during those challenges, when let's encrypt is calling traefik to get challenge certificates.
lego —domains blue.alex.test.com —domains alex.test.comand the logs appear to indicate the process worked
Hello, I’m back again. currently I have a subdomain CNAME’d to another subdomain like so
alex.test.com —> v727.alex.test.com
When I used
lego with the DNS challenge (my only option unfortunately), with route53 it appears to be following the CNAME when picking the hosted zone to place the
_acme-challenge txt record. Since the hosted zone is
v727.alex.test.com attempting to place
_acme-challenge.alex.test.com is invalid. Is there anyway to force
lego to a particular hosted zone? Instead of it looking it up
go get -u
2018/10/10 09:52:25 [INFO] [www.kiwi.ki] acme: Could not find solver for: tls-alpn-01 2018/10/10 09:52:25 [INFO] [www.kiwi.ki] acme: Could not find solver for: http-01 2018/10/10 09:52:25 [INFO] [jira.kiwi.ki] acme: Could not find solver for: tls-alpn-01 2018/10/10 09:52:26 Could not obtain certificates acme: Error -> One or more domains had a problem: [www.kiwi.ki] error presenting token: cloudflare: failed to find zone kiwi.ki.: Zone could not be found
hi ,anybody know why it's always 400 error when I use tls mode ?
2019/02/22 17:50:09 [INFO] [xxx.com] acme: use tls-alpn-01 solver 2019/02/22 17:50:09 [INFO] [xxx.com] acme: Trying to solve TLS-ALPN-01 2019/02/22 17:50:15 Could not obtain certificates: acme: Error -> One or more domains had a problem: [xxx.com] acme: error: 400 :: urn:ietf:params:acme:error:connection :: Connection refused, url: