I’m attempting to set up OpenReplay in a private VPC via a gateway, and having trouble with the SSL certificate generation, which seems to fail silently.
How does the certmanager.sh perform domain validation with LetsEncrypt? If I undrestood this it would help me investigate and develop a workaround.
Have you added your Domain (the one used for setting up OpenReplay) as an A Record in your DNS?
Yes, the error in this case was that HTTP was not permitted through so LetsEncrypt couldn’t connect. resolved now.
According to me It typically validates ownership of the domain through one of three methods:
On your web server LetsEncrypt requests that you place a certain file containing a token. Once that file has been verifie, it makes an HTTP request to a certain URL on your domain; You are prompted by LetsEncrypt to set up a specific DNS TXT record for your domain; LetsEncrypt looks for a unique certificat on your server, which is needed for TLS connection validation.