tldr/pages/common/acme.sh.md

1.2 KiB

acme.sh

Shell script implementing ACME client protocol, an alternative to certbot. More information: https://github.com/acmesh-official/acme.sh.

  • Issue a certificate using webroot mode:

acme.sh --issue --domain {{example.com}} --webroot {{/path/to/webroot}}

  • Issue a certificate using standalone mode using port 80:

acme.sh --issue --standalone --domain {{example.com}}

  • Issue a certificate using standalone TLS mode using port 443:

acme.sh --issue --alpn --domain {{example.com}}

  • Issue a certificate using a working Nginx configuration:

acme.sh --issue --nginx --domain {{example.com}}

  • Issue a certificate using a working Apache configuration:

acme.sh --issue --apache --domain {{example.com}}

  • Issue a wildcard (*) certificate using a manual DNS mode:

acme.sh --issue --dns --domain {{example.com}}

  • Issue a certificate using an automatic DNS API mode:

acme.sh --issue --dns {{dns_cf}} --domain {{example.com}}

  • Install certificate files into the specified locations (useful for automatic certificate renewal):

acme.sh --install-cert -d {{example.com}} --key-file {{/path/to/example.com.key}} --fullchain-file {{/path/to/example.com.cer}} --reloadcmd {{"systemctl force-reload nginx"}}