Standalone Authenticator.

class certbot.plugins.standalone.ServerManager(certs, http_01_resources)[source]

Bases: object

Standalone servers manager.

Manager for ACMEServer and ACMETLSServer instances.

certs and http_01_resources correspond to acme.crypto_util.SSLSocket.certs and acme.crypto_util.SSLSocket.http_01_resources respectively. All created servers share the same certificates and resources, so if you’re running both TLS and non-TLS instances, HTTP01 handlers will serve the same URLs!

class _Instance(server, thread)

Bases: tuple


Return a new OrderedDict which maps field names to their values

classmethod _make(iterable, new=<built-in method __new__ of type object at 0x906d60>, len=<built-in function len>)

Make a new _Instance object from a sequence or iterable

_replace(_self, **kwds)

Return a new _Instance object replacing specified fields with new values


Alias for field number 0


Alias for field number 1

ServerManager.run(port, challenge_type)[source]

Run ACME server on specified port.

This method is idempotent, i.e. all calls with the same pair of (port, challenge_type) will reuse the same server.


Server instance.

Return type:



Stop ACME server running on the specified port.

Parameters:port (int) –

Return all running instances.

Once the server is stopped using stop, it will not be returned.

Returns:Mapping from port to server.
Return type:tuple

Supported challenges validator for the argparse.

It should be passed as type argument to add_argument.

class certbot.plugins.standalone.Authenticator(*args, **kwargs)[source]

Bases: certbot.plugins.common.Plugin

Standalone Authenticator.

This authenticator creates its own ephemeral TCP listener on the necessary port in order to respond to incoming tls-sni-01 and http-01 challenges from the certificate authority. Therefore, it does not rely on any existing server program.


Challenges supported by this plugin.