By default, acme validation for the controller and metrics server will be done via HTTP. To support other configurations, this ansible installer can also validate via DNS integrations.
To switch from http validation to your preferred dns provider, add the following to your inventory.yml file.
acme_challenge_method: "autodns"
acme_autodns_user: ""
acme_autodns_pass: ""
acme_autodns_context: ""https://github.com/Neilpang/acme.sh/wiki/How-to-use-Amazon-Route53-API
acme_challenge_method: "aws"
acme_aws_key: ""
acme_aws_secret: ""acme_challenge_method: "cloudflare"
acme_cf_token: "" # API Token with write permission on the zone
acme_cf_account: "" # Account ID
acme_cf_zone: "" # Zone ID (Optional)acme_challenge_method: "cpanel"
acme_cpanel_username: ""
acme_cpanel_api_key: ""
acme_cpanel_hostname: "" # https://cpanel.example.com:2083https://www.digitalocean.com/help/api/
acme_challenge_method: "do"
acme_do_key: ""https://api.gandi.net/docs/livedns/
acme_challenge_method: "gandi"
acme_gandi_key: ""https://developer.godaddy.com/keys/
acme_challenge_method: "godaddy"
acme_gd_key: ""
acme_gd_secret: ""https://developer.hosting.ionos.de/docs/getstarted
acme_challenge_method: "ionos"
acme_ionos_prefix: ""
acme_ionos_secret: ""https://cloud.linode.com/profile/tokens
acme_challenge_method: "linode"
acme_linode_token: ""Instructions for configuring with PowerDNS
acme_challenge_method: "nsupdate"
acme_dns_server: "ns1.example.com"
acme_dns_port: "53"
acme_dns_tsig_name: "test" # Name of your key
acme_dns_tsig_algo: "hmac-md5"
acme_dns_tsig_secret: ""Note: We recommend you use the NSUPDATE method, as that does not require granting complete server access.
https://doc.powerdns.com/md/httpapi/README/
acme_challenge_method: "pdns"
acme_pdns_url: ""
acme_pdns_serverid: ""
acme_pdns_token: ""Ensure the controller, registry, and metrics IPs are added to the api whitelist.
acme_challenge_method: "vultr"
acme_vultr_key: ""