ACME problem with IDN Domains
-
When I include a iono ACE converted IDN (internationalized domain name) in my running config its not included in certificate and following error messages are issued
Error add txt for domain:_acme-challenge.MY_IDN_DOMAIN_NAME Error removing txt for domain:_acme-challenge.MY_IDN_DOMAIN_NAME
When I try to enter direct the IDN in GUI I get error
The field 'Domainname' does not contain a valid hostname.
I use "DNS-Cloudflare" method.
Has anyboy same issue or any idea how to solve?
-
After some updates of ACME still same issue. Has Nobody a IDN domain or any idear how to solve or work around?
-
No IDNs here or a good way to test them. I don't think the current validation functions in pfSense support IDNs, and I'm not aware of any plans to address that at the moment. Plus it would require changes to the package to store the domain in a way that is XML-safe, which could be another issue.
-
jimp thanks a lot for answer. Any Idea why its not working with the ACE/Punycode? Storrage should be not a problem but leads to the error above.
-
Probably because the hostname/FQDN validation functions don't recognize that.
-
After Upgrade to 0.6.2 its now working fine for ACE converted IDN. So everything looks good now. Thanks to the unnown solver :-)
-
Great! It must have been solved upstream in acme.sh