banner
AcoFork

AcoFork

LOVETOLOVE

Don't know how to apply for a free wildcard SSL certificate? acme.sh can help you!

Introduction:#

acme.sh has official Chinese documentation: Documentation · acmesh-official/acme.sh Wiki (github.com)

Requirements:#

  1. Use your brain

  2. Linux system

  3. Internet access

  4. Your domain is hosted on CloudFlare

Getting Started#

  1. acme.sh is a shell script for Linux that issues free wildcard domain certificates for your domain. This article uses CloudFlare verification (the acme.sh official website provides detailed instructions, for other methods please visit acme.sh)

  2. If you are in mainland China:

git clone https://gitee.com/acmesh-official/acme.sh.git
cd ./acme.sh
./acme.sh --install -m [email protected]

If you are not in mainland China: curl https://get.acme.sh | sh -s [email protected]

  1. Go to CloudFlare API Tokens to get your Global API Key (you need to enter your CloudFlare account password), it is usually a combination of numbers and letters, such as: 763eac4f1bcebd8b5c95e9fc50d010b4

  1. Write the CloudFlare Global API Key to a global variable: export CF_Key="763eac4f1bcebd8b5c95e9fc50d010b4"

  2. Write the CloudFlare bound email to a global variable: export CF_Email="[email protected]"

  3. Start issuing the certificate: ./acme.sh --issue --dns dns_cf -d example.com -d '*.example.com'

  4. The issued certificate will be automatically renewed. You can use crontab -l to view the scheduled task. The certificate files are located in the domain folder inside your user's home directory .acme.sh. The file path is like /root/.acme.sh/example.com. The .cer file is the certificate file (public key), and the .key file is the key file (private key).

Troubleshooting:#

  1. Q: What should I do if I enter the wrong global variable and the certificate issuance fails?

A: Go to the .acme.sh folder in your user's home directory and modify the relevant content in the account.conf file. The file path is like: /root/.acme.sh/account.conf

Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.