• Command line arguments
• Settings.json
• Plugins
  • Target
    • IIS
    • Manual
    • CSR
  • Validation
    • HTTP validation
      • Self-hosting
      • Filesystem
      • FTP(S)
      • SFTP
      • WebDav
    • DNS validation
      • acme-dns
      • Azure (Microsoft)
      • Cloud DNS (Google)
      • Cloudflare
      • DigitalOcean
      • Dreamhost
      • GoDaddy
      • LuaDNS
      • Manual
      • Route53 (Amazon)
      • Script
      • TransIP
    • TLS validation
      • Self-hosting
  • Order
    • Single
    • Host
    • Site
    • Domain
  • CSR
    • RSA
    • EC
  • Store
    • Azure KeyVault
    • Certificate Store
    • Central Certificate Store
    • .pem files (Apache etc.)
    • .pfx file
  • Installation
    • IIS HTTPS bindings
    • IIS FTPS bindings
    • Script

Script

Run an external script or program to create or update the validation records.

Create

A script to create the DNS record must be provided. The arguments passed to the script will be create {Identifier} {RecordName} {Token} by default, where the following replacements are made by win-acme:

The order and format of arguments may be customized by providing a diffent argument string. For example if your script needs arguments like:

--host _acme-challenge.example.com --token DGyRejmCefe7v4NfDGDKfA

…your argument string should like like this:

--host {RecordName} --token {Token}

Delete

Optionally, another script may be provided to delete the record after validation. The arguments passed to the script will be delete {Identifier} {RecordName} {Token} by default. The order and format of arguments may be customized by providing a diffent argument string, just like for the create script. You can also choose to use the same script for create and delete, with each their own argument string.

Resources

A lot of good reference scripts are available from the POSH-ACME project. Note that these scripts are not compatible with win-acme. You will have to make changes (e.g. in terms of accepted parameter and such) in order to use them.

Unattended

• Create script only

  -validationmode dns-01 --validation script --dnscreatescript c:\create.ps1 [--dnscreatescriptarguments {args}]

• Create and delete scripts seperate

  -validationmode dns-01 --validation script --dnscreatescript c:\create.ps1 --dnsdeletescript c:\delete.ps1 [--dnscreatescriptarguments {args}] [--dnsdeletescriptarguments {args}]

• Create-delete script (integrated)

  -validationmode dns-01 --validation script --dnsscript c:\create-and-delete.ps1 [--dnscreatescriptarguments {args}] [--dnsdeletescriptarguments {args}]