diff options
| author | Lexi Winter <ivy@FreeBSD.org> | 2025-06-03 13:06:16 +0100 |
|---|---|---|
| committer | Lexi Winter <ivy@FreeBSD.org> | 2025-06-03 13:06:16 +0100 |
| commit | e802ffb7c028f6a39dd4fc790b7858ee60effbe5 (patch) | |
| tree | d02ab80bca931f13ca499f6e8691d8af8959f160 /domains.conf.5 | |
| parent | 88c7b41e9c7ccbdbd252f37e458d01f2143aa8f2 (diff) | |
| download | lfacme-e802ffb7c028f6a39dd4fc790b7858ee60effbe5.tar.gz lfacme-e802ffb7c028f6a39dd4fc790b7858ee60effbe5.tar.bz2 | |
make "http" the default challenge handler
Diffstat (limited to 'domains.conf.5')
| -rw-r--r-- | domains.conf.5 | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/domains.conf.5 b/domains.conf.5 index 287d19d..0f587e7 100644 --- a/domains.conf.5 +++ b/domains.conf.5 @@ -62,6 +62,26 @@ and The challenge script is passed to .Xr uacme 1 ; see the uacme documentation for details on the calling convention. +.Pp +Two challenge scripts are provided with +.Nm lfacme : +.Bl -tag -width kerberos +.It Sy http +Use HTTP-based validation. +This requires +.Va ACME_HTTP_CHALLENGE_DIR +to be set in +.Xr acme.conf 5 . +This is the default challenge handler. +.It Sy kerberos +Use DNS-based validation with +.Xr nsupdate 1 +using Kerberos authentication. +This requires +.Va ACME_KERBEROS_PRINCIPAL +to be set in +.Xr acme.conf 5 . +.El .It Sy hook Ns Li = Ns Ar filename Invoke .Ar filename |