Automatic Let's Encrypt if SSL is enabled

Submitted by yngens on Wed, 09/06/2017 - 04:12

Usually, when SSL is enabled then the system generates self-signed certificate. And that's good because not all the domains are ready to pass Let's Encrypt verification. However, in our use case we need to generate Let's Encrypt as soon as SSL is enabled. I wonder if there is a way to automotize this. If post creation script needs to be used then what is the Virtualmin CLI command to generate Let's Encrypt? Thanks!

Status: 
Closed (works as designed)

Comments

Submitted by andreychek on Wed, 09/06/2017 - 09:57

Howdy -- there isn't a way to do that when SSL is enabled.

However, now that SSL is becoming more common, there's a feature for enabling Let's Encrypt for all domains as they are created.

That feature can be enabled in System Settings -> Virtualmin Config -> SSL Options -> "Request Let's Encrypt certificate at domain creation time?".

Submitted by yngens on Wed, 09/06/2017 - 12:00

That's cool. Gonna try today later and see.

Submitted by yngens on Wed, 09/06/2017 - 12:56

The solution would be if we could make Let's Encrypt to auto-request certificates only for the subdomain itself without www.

Submitted by yngens on Wed, 09/06/2017 - 17:26

Status: Active ยป Closed (works as designed)

Since I've got satisfactory solution to the subject matter of this issue, I am closing it and going to open a new one for www. problem.

Submitted by JamieCameron on Wed, 09/06/2017 - 18:31

Ok, I didn't consider the case where you're requesting a cert for a sub-domain. That should be fixable though ..

Submitted by JamieCameron on Wed, 09/06/2017 - 18:45

This situation will be handled properly in the next Webmin release.