acme.sh

Shell script implementing ACME client protocol, an alternative to certbot.

TLDR

Issue a certificate using webroot mode

$ acme.sh --issue --domain [example.com] --webroot [/path/to/webroot]
copy

Issue a certificate for multiple domains using standalone mode using port 80

$ acme.sh --issue --standalone --domain [example.com] --domain [www.example.com]
copy

Issue a certificate using standalone TLS mode using port 443

$ acme.sh --issue --alpn --domain [example.com]
copy

Issue a certificate using a working Nginx configuration

$ acme.sh --issue --nginx --domain [example.com]
copy

Issue a certificate using a working Apache configuration

$ acme.sh --issue --apache --domain [example.com]
copy

Issue a wildcard (\*) certificate using an automatic DNS API mode

$ acme.sh --issue --dns [dns_cf] --domain [*.example.com]
copy

Install certificate files into the specified locations (useful for automatic certificate renewal)

$ acme.sh --install-cert -d [example.com] --key-file [/path/to/example.com.key] --fullchain-file [/path/to/example.com.cer] --reloadcmd ["systemctl force-reload nginx"]
copy

Copied to clipboard
Dodo Farming