Wildcard LetsEncrypt

calendar2020-06-07 · 1 min read · sslcert tlscert letsencrypt wildcard  ·
Share on: linkedincopy
 1yum install certbot.noarch -y
 2 
 3 
 4certbot -d *.example.com \
 5--manual \
 6--preferred-challenges \
 7dns certonly \
 8--server https://acme-v02.api.letsencrypt.org/directory
 9 
10...
11...
12create the TXT DNS record
...

NOTE: In creating the cert, make sure to wait for 5minutes or better check in another terminal session if the txt record is now visible. Otherwise, cert creation will fail.

Some details in https://wicowen.github.io/2018-0315-1400-Enable-Lets-encrypt-wildcard-certificate-in-CentOS-7/

In Ubuntu/Debian check https://medium.com/@saurabh6790/generate-wildcard-ssl-certificate-using-lets-encrypt-certbot-273e432794d7

130 2 * * * /usr/bin/certbot renew >> /var/log/letsencrypt-renew.log

Some details in https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-16-04

There's an automated and better way, see https://developerinsider.co/how-to-create-and-auto-renew-lets-encrypt-wildcard-certificate/