The Provisioning Server

A short introduction about server-side requirements


  • A host with a static ipv4/ipv6 address or similar setup

  • The host should run a Linux distribution

  • A DNS provider with API access


Assuming the server is reachable under the domain, then the following must be given:

  1. Support HTTPS at

  2. Listen on port 80 on every subdomain * and *.*

  3. Forward * to* and *.* to*/* respectively

2. and 3. are important steps for the CT log feature, which is currently under development. It enables the tooling to request a certificate for a unique subdomain at a Certificate Authority like Let's Encrypt.

Edit on GitHub