Proxmox ACME issue certificate

I was looking into issuing a SSL certificate for my Proxmox instance running on my newly bought intel NUC. As I am completely new to Proxmox it took me a while to get it working so let me share my experience with you so it might take you less time.

Port forwarding

As mentioned in the documentation:

Port 80 of the node needs to be reachable from the internet

Which means I need to enable port forwarding, I am also going to enable it for port 8006.

  • 80: used during certificate issuing/renewal
  • 8006: used to access the Proxmox instance

port-forwarding

DNS record

You'll also need to create a new 'A' type DNS record which redirects to your network. Mine is configured on DigitalOcean

dns-record-1

ACME issuing on instance

Execute the following commands to issue a new certificate using ACME

pvenode acme account register default example@proxmox.com

Select the production environment, option 0 + accept the Terms of Service

pvenode config set --acme domains=your.domain.here

In my example the domain is pve.jeroendruwe.be

pvenode acme cert order

When this finishes successfully the pveproxy should restart and the certificate should be instantiated.

certificate