github
/
acme.sh
mirror of https://github.com/acmesh-official/acme.sh
1
0
Fork 0
Code Issues Releases Wiki Activity

Add OPNsense Bind API

master
blablup 2019-09-12 16:44:54 +02:00
parent 3c7ecf92b4
commit 2730fbed55
1 changed files with 28 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
dnsapi.md

@ -1714,6 +1714,34 @@ If you find any bugs, please report here:
https://github.com/Neilpang/acme.sh/issues/2457 https://github.com/Neilpang/acme.sh/issues/2457
## 86. Use OPNsense embedded API to automatically issue cert
First you need to login to your OPNsense account and create an API Key for a user with access to the Bind service.
https://docs.opnsense.org/development/api.html
```
#OPNs_Host="opnsense.example.com"¬
#OPNs_Port="443"¬
#OPNs_Key="qocfU9RSbt8vTIBcnW8bPqCrpfAHMDvj5OzadE7Str+rbjyCyk7u6yMrSCHtBXabgDDXx/dY0POUp7ZA"¬
#OPNs_Token="pZEQ+3ce8dDlfBBdg3N8EpqpF5I1MhFqdxX06le6Gl8YzyQvYCfCzNaFX9O9+IOSyAs7X71fwdRiZ+Lv"¬
#OPNs_Api_Insecure=0
```
Ok, let's issue a cert now:
```
acme.sh --issue --dns dns_opnsense -d example.com -d www.example.com
```
The `OPNs_Host`, `OPNs_Port`, `OPNs_Key`, `OPNs_Token` and `OPNs_Api_Insecure` will be saved in `~/.acme.sh/account.conf` and will be reused when needed.
If you find any bugs, please report here:
https://github.com/Neilpang/acme.sh/issues/2480
# Use custom API # Use custom API
If your API is not supported yet, you can write your own DNS API. If your API is not supported yet, you can write your own DNS API.