opnsense_acme_add_challenge
Add DNS-01 challenge configuration for automated SSL/TLS certificate validation in OPNsense firewall. Configure DNS provider credentials for Let's Encrypt ACME automation.
Instructions
Add a DNS-01 challenge configuration for automated certificate validation. For Cloudflare, use the dedicated dns_cf_* fields instead of dns_environment. Run opnsense_acme_apply afterwards.
Input Schema
TableJSON Schema
| Name | Required | Description | Default |
|---|---|---|---|
| name | Yes | Name for this challenge (e.g. 'Cloudflare DNS') | |
| dns_service | Yes | DNS provider service ID (e.g. 'dns_cf' for Cloudflare) | |
| dns_environment | No | Environment variables for the DNS provider (for non-Cloudflare providers or custom env vars) | |
| description | No | Optional description | |
| dns_cf_token | No | Cloudflare API Token (recommended over Global API Key) | |
| dns_cf_account_id | No | Cloudflare Account ID (used with API Token) | |
| dns_cf_key | No | Cloudflare Global API Key (legacy, use dns_cf_token instead) | |
| dns_cf_email | No | Cloudflare account email (used with Global API Key) | |
| dns_cf_zone_id | No | Cloudflare Zone ID (optional, speeds up DNS operations) |