this post was submitted on 12 Jun 2023
4 points (100.0% liked)

Synology

965 readers
1 users here now

Synology

This is a place for all topics regarding Synology hard- and software - especially (but not limited to) their NAS devices.

Just one thing: Let’s please be pleasant to each other and respect that people have different experience levels. Some are pros, some are noobs, yet everybody may have good ideas or interesting questions to ask and comments to make, and all of these shall be heard and appreciated. ❤️

And since we know from TV that all IT nerds 🤓 are h4xx0rs and wear hoodies all the time (if not even ski masks) in front of their computers, I chose an appropriate banner image (image credit).

founded 1 year ago
MODERATORS
[email protected]
4
Acme.sh automated process to renew Let's Encrypt certificate? (lemm.ee)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
3 comments fedilink hide all child comments
 

Does anyone here have a working setup of automated acme.sh that renews the certificates every three months?

I tried to setup something but I think I saw an error message when I run it, and due to the way let's encrypt rejects requests when the certificate is not due for renewal, I can't really tell what exactly is the problem as I simply can't repeatedly run my process and check where the error stems from.

Would be great if someone can share a setup that they are currently using that works.

Edit: It finally came time to renew again, and what I have already entered into task scheduler was fired, and the certificate seems to have been renewed successfully.

So basically, just download the latest acme.sh, then add a task in your task scheduler that runs this:

bash /root/.acme.sh/acme.sh --renew -d xyz.com
top 3 comments
sorted by: hot top controversial new old
[–] [email protected] 2 points 1 year ago

I always used certbot idk if this is still a thing.

[–] [email protected] 2 points 1 year ago

It’s hard to tell without an error log, but I remember having issues because my user had two factor authentication enabled. If you do too, check out the applicable note here: https://github.com/acmesh-official/acme.sh/wiki/Synology-NAS-Guide#deploy-the-default-certificate

[–] [email protected] 1 points 1 year ago

I just use the built-in "Control Panel > Security > Certificates" to get a Let's Encrypt certificate. They get stored in /usr/syno/etc/certificate/system/default if you need them for something custom...