ref: 32526e0f433c7a79b976cc42326cb0ac5ab39eb2
parent: a794940d81c57e3c36df47fd4425fb5300798d5c
author: sl <sl@stanleylieber.com>
date: Tue Nov 30 08:56:58 EST 2021
fqa7.ms: 7.9.1: clarify
--- a/fqa7.ms
+++ b/fqa7.ms
@@ -1965,7 +1965,7 @@
The following uses the CSR from above, and fetches a newly signed certificate:
.P1
-auth/acmed -o /path/to/.well-known/acme-challenge user@domain.com \\
+auth/acmed -t http -o /path/to/.well-known/acme-challenge user@domain.com \\
/sys/lib/tls/acmed/domain.com.csr >/sys/lib/tls/acmed/domain.com.crt
.P2
@@ -1992,10 +1992,10 @@
.P1
database=
...
- file=/lib/ndb/dnschallenge
+ file=/lib/ndb/dnschallenge # add this line under what you already have
.P2
-In addition, the domains that you like to get verified needs to have a certificate authority authorization record of your ACME provider declared:
+In addition, the domain that you'd like to get verified needs to have a certificate authority authorization record of your ACME provider declared:
.P1
dom=domain.com caa=letsencrypt.org