DevOps Buzz
Search…
Bash / Shell
Bitbucket
Distros
Elasticsearch
General
Guidelines / Standards
microk8s
Prometheus
RabbitMQ
VirtualBox
certbot

Google DNS

Set up an IAM with "DNS Administrator" role.
If you want to use least privilege approach, use the following permissions:
1
- dns.changes.create
2
- dns.changes.get
3
- dns.managedZones.list
4
- dns.resourceRecordSets.create
5
- dns.resourceRecordSets.delete
6
- dns.resourceRecordSets.list
7
- dns.resourceRecordSets.update
Copied!
Then export user's credentials.json
Install and run certbot.
1
pip3 install certbot-dns-google
Copied!
Create certificates.
1
certbot certonly \
2
--config-dir ./config \
3
--work-dir ./work \
4
--logs-dir ./logs \
5
--agree-tos [email protected] \
6
--server https://acme-v02.api.letsencrypt.org/directory \
7
--dns-google \
8
--dns-google-propagation-seconds 120 \
9
--dns-google-credentials ./credentials.json \
10
-d 'PUT-YOUR-DOMAIN-HERE.com.'
Copied!
Copy link