Giters

ebekker / ACMESharp

An ACME client library and PowerShell client for the .NET platform (Let's Encrypt)

Home Page:https://pkisharp.github.io/ACMESharp-docs/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Method 2 Quick Start issue

mikemadeja opened this issue · comments

commented

Following the guide, I don't get the details that the wiki provides.

Complete-ACMEChallenge stocknfo -ChallengeType http-01 -Handler manual

Renders below.

image

Based on the guide, I should see more? Guide - https://github.com/ebekker/ACMESharp/wiki/Quick-Start#method-2---handling-the-http-challenge-manually
Complete-ACMEChallenge dns1 -ChallengeType http-01 -Handler manual
== Manual Challenge Handler - HTTP ==

  • Handle Time: [1/12/2016 1:16:34 PM]
  • Challenge Token: [2yRd04TwqiZTh6TWLZ1azL15QIOGaiRmx8MjAoA5QH0]
    To complete this Challenge please create a new file
    under the server that is responding to the hostname
    and path given with the following characteristics:
  • HTTP URL: [http://myserver.example.com/.well-known/acme-challenge/2yRd04TwqiZTh6TWLZ1azL15QIOGaiRmx8MjAoA5QH0]
  • File Path: [.well-known/acme-challenge/2yRd04TwqiZTh6TWLZ1azL15QIOGaiRmx8MjAoA5QH0]
  • File Content: [2yRd04TwqiZTh6TWLZ1azL15QIOGaiRmx8MjAoA5QH0.H3URk7qFUvhyYzqJySfc9eM25RTDN7bN4pwil37Rgms]
  • MIME Type: [text/plain]
commented

Hello Mike,
first to say that I'm not the most experienced expert for ACME-challenge ;)

But one hint I can give:
Your choosen alias for your domain/subdomain you are defining with the beginning
New-ACMEIdentifier - order
(not shown on your screenshot) may be far too simple.:

Every here used alias should be everytime unique as far as I know.

Try this scheme:
dns_stockinfo_20180112_1001
(%named-part-of-chars%%date%%unique-serial-number%)

... and increment the last number-part for EVERY domain/subdomain you want
to "challenge".

It's because your declared alias at the ACME-server does remain there for a
time which is not manageable by yourself.

Kind regards, Jens

commented

We faced the same problem and finally got the solution (Updated the wiki right now):

Short answer: You can always run Update-ACMEIdentifier to get all the details. Or see #312 (comment)

Long answer:
Note: If you do not get the challenge details like file path and content in the output, you can always run step 6(b) i.e. Update-ACMEIdentifier to get the details:

PS> (Update-ACMEIdentifier dns1 -ChallengeType dns-01).Challenges | Where-Object {$_.Type -eq "http-01"}
...
Status         : pending
...
commented

I can't confirm domain with http-01. Always in pending state.
I've checked everything: text/plain and a path