How does the LetsEncrypt auto-cert generation do validation?

I’m attempting to set up OpenReplay in a private VPC via a gateway, and having trouble with the SSL certificate generation, which seems to fail silently.

How does the perform domain validation with LetsEncrypt? If I undrestood this it would help me investigate and develop a workaround.

Have you added your Domain (the one used for setting up OpenReplay) as an A Record in your DNS?

Yes, the error in this case was that HTTP was not permitted through so LetsEncrypt couldn’t connect. resolved now.