Let's Encrypt on a Big-IP

Problem this snippet solves: It is now possible to make use of Let's Encrypt certificates and maintain them on the Big-IP. Code : http://wiki.lnxgeek.org/doku.php/howtos:let_s_encrypt_-_how_to_iss...

Published Dec 12, 2015

Version 1.0

automatic renew certificates

BIG-IP

certificate automation

certificate management

Let's Encrypt

lnxgeek

MVP

Joined July 21, 2008

View Profile

lnxgeek

MVP

Joined July 21, 2008

View Profile

mperry44_281385

Nimbostratus

Feb 19, 2019

Im getting Challenge is invalid which is understandable since DNS has not been updated with the TXT record. So my question is, after running the script, do I add the token value presented after "token": to the DNS server as TXT?

' ERROR: Challenge is invalid! (returned: invalid) (result: {
        "type": "dns-01",
        "status": "invalid",
  "error": {
    "type": "urn:ietf:params:acme:error:dns",
    "detail": "DNS problem: NXDOMAIN looking up TXT for _acme-challenge.my.example.com",
    "status": 400
  },
  "url": "https://acme-v02.api.letsencrypt.org/acme/challenge/cdsuhihdfushduhfisuhuhsufhushdfauiiuf",
  "token": "jsifneriufhsfnasuhnfasnruafegigsi-si"
})

Let's Encrypt on a Big-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS