| Server IP : 188.114.97.2 / Your IP : 104.23.197.231 Web Server : Apache/2.4.59 (Debian) System : Linux EDL-STRETCH 4.19.0-27-amd64 #1 SMP Debian 4.19.316-1 (2024-06-25) x86_64 User : edlftp ( 1002) PHP Version : 7.4.33 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /opt/certbot/certbot-dns-route53/ |
Upload File : |
## Route53 plugin for Let's Encrypt client ### Before you start It's expected that the root hosted zone for the domain in question already exists in your account. ### Setup 1. Create a virtual environment 2. Update its pip and setuptools (`VENV/bin/pip install -U setuptools pip`) to avoid problems with cryptography's dependency on setuptools>=11.3. 3. Make sure you have libssl-dev and libffi (or your regional equivalents) installed. You might have to set compiler flags to pick things up (I have to use `CPPFLAGS=-I/usr/local/opt/openssl/include LDFLAGS=-L/usr/local/opt/openssl/lib` on my macOS to pick up brew's openssl, for example). 4. Install this package. ### How to use it Make sure you have access to AWS's Route53 service, either through IAM roles or via `.aws/credentials`. Check out [sample-aws-policy.json](examples/sample-aws-policy.json) for the necessary permissions. To generate a certificate: ``` certbot certonly \ -n --agree-tos --email [email protected] \ --dns-route53 \ -d MY.DOMAIN.NAME ```