GitLab CE and letsencrypt DNS-01 validation


Is this possible to use DNS validation instead of HTTP validation for self-hosted gitlab-ce?
I cannot find references to this possibility in the documentation.


Is possible, but you need to use certbot insted of the current gitlab integrated solution.

Will this config be supported by omnibus installation?
The main question is version update.

It is, once letsecrypt verifies your domain through certbot you just have to modify the paths on nginx[‘ssl_certificate’] and
(inside gitlab.rb file) in order to match the new certifieds location. But keep in mind that this ways, certify auto-renewal processes became a little bit trickier.