1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
|
Metadata-Version: 2.4
Name: certbot-dns-hetzner-cloud
Version: 1.0.5
Summary: Certbot DNS Plugin for Hetzner Cloud DNS
Author: RĂ¼diger Olschewsky
License: MIT
Project-URL: Homepage, https://github.com/rolschewsky/certbot-dns-hetzner-cloud
Project-URL: Repository, https://github.com/rolschewsky/certbot-dns-hetzner-cloud
Keywords: certbot,dns,hetzner,acme,letsencrypt
Requires-Python: >=3.10
Description-Content-Type: text/markdown
License-File: LICENSE.txt
Requires-Dist: certbot>=2.0
Requires-Dist: tldextract>=5.3.0
Requires-Dist: hcloud>=2.8.0
Provides-Extra: dev
Requires-Dist: pytest; extra == "dev"
Requires-Dist: pytest-cov; extra == "dev"
Dynamic: license-file
[](https://github.com/rolschewsky/certbot-dns-hetzner-cloud/releases)
[](https://pypi.org/project/certbot-dns-hetzner-cloud/)
[](https://snapcraft.io/certbot-dns-hetzner-cloud)
[](https://github.com/rolschewsky/certbot-dns-hetzner-cloud/blob/main/LICENSE.txt)
[](https://github.com/rolschewsky/certbot-dns-hetzner-cloud/actions/workflows/build-release.yml)
[](https://codecov.io/gh/rolschewsky/certbot-dns-hetzner-cloud)
# Certbot DNS Plugin for Hetzner Cloud DNS
This is a Certbot DNS plugin for the new Hetzner Cloud DNS, which allows you to automate the process of obtaining and
renewing SSL/TLS certificates using the DNS-01 challenge method. This Plugin is not compatible with the old Hetzner DNS
Console and you might want to take a look at the [certbot-dns-hetzner][1] plugin instead.
## Setup
### Installation
To install the Certbot DNS plugin for Hetzner Cloud DNS, you can either use `pip` or `snap`.
#### Installation using *pip*
If you installed Certbot within a virtual environment (e.g., `/opt/certbot`) as per [official Certbot instructions][2]
you can install the plugin using the following command:
```bash
/opt/certbot/bin/pip install certbot-dns-hetzner-cloud
```
#### Installation using *snap*
If you installed Certbot using `snap`, you can install the plugin with the following commands:
```bash
sudo snap install certbot-dns-hetzner-cloud
sudo snap set certbot trust-plugin-with-root=ok
sudo snap connect certbot:plugin certbot-dns-hetzner-cloud
```
#### Verify installation
After installation, you can verify that the plugin is available by running:
```bash
certbot plugins
```
you should see `dns-hetzner-cloud` listed among the available plugins.
### Storing the API Token
Create a configuration file under `/etc/letsencrypt/hetzner-cloud.ini` with the following content:
```ini
# Hetzner Cloud API Token
dns_hetzner_cloud_api_token = your_api_token_here
```
Make sure to set the correct permissions for the configuration file to protect your API token:
```bash
sudo chmod 600 /etc/letsencrypt/hetzner_cloud.ini
```
If you want to use a different path for the configuration file, you can specify it using the `--dns-hetzner-cloud-credentials` option when running Certbot.
## Usage
You can use the plugin with Certbot by specifying the `dns-hetzner-cloud` authenticator.
Here is an example command to obtain a certificate for a wildcard subdomain:
```bash
certbot certonly --agree-tos \
--authenticator dns-hetzner-cloud \
-d '*.example.eu'
```
If you want to use a different path for the configuration file, you can specify it using the
`--dns-hetzner-cloud-credentials` option.
```bash
certbot certonly --agree-tos \
--authenticator dns-hetzner-cloud \
--dns-hetzner-cloud-credentials /path/to/your/hetzner_cloud.ini \
-d '*.example.eu'
```
[1]:https://github.com/ctrlaltcoop/certbot-dns-hetzner
[2]:https://certbot.eff.org/instructions
|
