acme.sh
May 14, 2020
acme.sh
About
acme.sh. A pure Unix shell script implementing ACME client protocol.
acme.sh issue a Let’s Encrypt certificate for you. See How Let’s Encrypt works.
Usage
Nginx + Cloudflare
Prerequisites
A domain & use Cloudflare nameserver
Install acme.sh
curl https://get.acme.sh | sh
Configure
dns api
export CF_Key="sdfsdfsdfljlbjkljlkjsdfoiwje"
export CF_Email="xxxx@sss.com"
`Issue cert
acme.sh --issue --dns dns_cf -d f00bar.cn -d '*.f00bar.cn'Install cert
acme.sh --install-cert -d f00bar.cn --cert-file /etc/nginx/ssl/f00bar.cer --key-file /etc/nginx/ssl/f00bar.key --fullchain-file /etc/nginx/ssl/fullchain.cer --reloadcmd "service nginx force-reload"Other
Renew
**Add cron job**
```acme.sh --install-cronjobAdd alias
alias acme.sh="~/.acme.sh/acme.sh"