I have the domain “example.com” managed by an external DNS service.
I’d like to point
cdn.example.com to Digital Ocean Spaces.
I can’t switch to Digital Ocean DNS because Digital Ocean doesn’t support all the record types I want.
So my remaining option is to install a custom SSL certificate per this guide: https://docs.digitalocean.com/products/spaces/how-to/customize-cdn-endpoint/ and follow the “Bring Your Own Certificate” option.
The instructions for the “Bring Your Own Certificate” option are to install Certbot on a server - however, “example.com” is currently pointing to a server that is managed by Digital Ocean Apps, and I don’t have permissions on those managed Apps to run Certbot.
Also - LetsEncrypt certificates require renewal every 90 days. How would I do that with Digital Ocean spaces?
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.