I have been recently been playing with the Eramba Community Edition running as a VM and have had a moment of curiousness where I thought it would be good to use a service like “let’s encrypt” for the provision of SSL certificates. Firstly has anyone achieved this including the ability to auto rotate using an AzureDNS service? Secondly has anyone had issues with using the certbot and certbot-apache processes within the Eramba base ovf?
this would be a nice feature to include for the Docker image to support this style of cert provisioning as this makes it very attractive option for maximising the use of opensource services.
Hi,
I use a proxy server in front of all my docker containers (not only Eramba) and handle Let’s Encrypt cert renewals separately. I do not use AzureDNS, but DirectAdmin, but I guess a similar setup would be possible.
Short Explanation:
DNS-01 is an ACME validation method used by Let’s Encrypt and other certificate authorities. Instead of validating ownership through a web server (HTTP-01), it verifies domain ownership by checking a temporary TXT record in DNS under _acme-challenge.<domain>.
This approach is commonly used with DNS providers such as Azure DNS because the TXT record can be created automatically through the provider’s API. DNS-01 is especially useful for wildcard certificates and for systems that are not directly accessible from the internet.
Yes, using Let’s Encrypt certificates with Eramba is perfectly possible.
The OVF is a plain Ubuntu 24, so using Certbot or installing any dependencies shouldn’t be a problem. Also, Pretty sure Let’s Encrypt certificates can be renewed automatically with Certbot.