Add your hosts to the hosts file section [letsencrypt-server] Add a gandi api key variable to vault file: variable name: vault_letsencrypt_api_key
ansible-vault create group_vars/vault.yml
ansible-playbook manage_letsencrypt.yml --diff -C
certbot certonly -n --manual --manual-auth-hook=/usr/local/sbin/certbot-gandi.sh --preferred-challenges=dns --email=[email protected] --server https://acme-staging-v02.api.letsencrypt.org/directory --agree-tos --manual-public-ip-logging-ok -d 'example.com'
certbot certonly -n --manual --manual-auth-hook=/usr/local/sbin/certbot-gandi.sh --preferred-challenges=dns --email=[email protected] --server https://acme-staging-v02.api.letsencrypt.org/directory --agree-tos --manual-public-ip-logging-ok -d 'example.com'