Does anyone here have a working setup of automated acme.sh that renews the certificates every three months?
I tried to setup something but I think I saw an error message when I run it, and due to the way let’s encrypt rejects requests when the certificate is not due for renewal, I can’t really tell what exactly is the problem as I simply can’t repeatedly run my process and check where the error stems from.
Would be great if someone can share a setup that they are currently using that works.
Edit: It finally came time to renew again, and what I have already entered into task scheduler was fired, and the certificate seems to have been renewed successfully.
So basically, just download the latest acme.sh, then add a task in your task scheduler that runs this:
bash /root/.acme.sh/acme.sh --renew -d xyz.com
I always used certbot idk if this is still a thing.
It’s hard to tell without an error log, but I remember having issues because my user had two factor authentication enabled. If you do too, check out the applicable note here: https://github.com/acmesh-official/acme.sh/wiki/Synology-NAS-Guide#deploy-the-default-certificate
I just use the built-in “Control Panel > Security > Certificates” to get a Let’s Encrypt certificate. They get stored in
/usr/syno/etc/certificate/system/default
if you need them for something custom…