A simple script to acquire TLS certificates for RouterOS devices using the lego
Let's Encrypt client and Route53 DNS
to answer a DNS ACME challenge.
-
The lego client is installed and in the
PATH
. -
Python 3 is installed (I suggest using a fresh virtualenv).
-
A Route53 hosted zone has been created for your desired domain name.
-
IAM credentials have been created that can edit the above zone. These credentials must be available to
lego
. -
You have an SSH key setup for the configured RouterOS user.
cp config.json.example config.json
vim config.json
pip install -r requirements.txt
python3 ros-tls.py