1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
---
sidebar: reference
---
# Cloudflare
Create the record in Cloudflare DNS.
{% include plugin-seperate.md %}
## Setup
This assumes you already have your DNS managed in Cloudflare; if not, you'll need to set that up first. If you are
using the Cloudflare DNS option for validation, you'll need to obtain a Cloudflare API Token (not Key) that is allowed
to read and write the DNS records of the zone your domain belongs to.
### Create an appropriate API Token
1. Navigate here: https://dash.cloudflare.com/profile/api-tokens
2. Click *Create Token*
3. Choose a name
4. Under *Permissions*, select "Zone", "DNS", "Edit"; Click *Add More*, select "Zone", "Zone", "Read"
5. Under *Zone Resources*, select "Include", "All zones" (or "All zones from an account" and select the relevant account).
* Note that restricting access to the single target zone does not work, as we can not get the zone's id by its domain name then. You might be able to exclude other zones specifically. If this is a show stopper for you please open an issue to discuss how to proceed.
6. Finish creating the token, store it in a safe place or, better, paste it directly into win-acme.
## Unattended
`--validationmode dns-01 --validation cloudflare --cloudflareapitoken ***`
|
