That wouldn't work for this use case though would it? AWS doesn't allow download... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cj on July 28, 2024 \| parent \| context \| favorite \| on: Free DDNS with Cloudflare and a cronjob That wouldn't work for this use case though would it? AWS doesn't allow downloading the certificate (I could be wrong)? Typically certificates can only be used with other AWS services. E.g. you can't download the certificate and serve it from a home server.

vladvasiliu on July 28, 2024 [–]

You're not wrong, but the idea here is not to use AWS' certificate manager but their DNS service on which you would only handle the acme-challenge subdomain. This would allow you to limit who can update which subdomain. The LE cert is obtained normally.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact