New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Using one single cert for 250 domains across multiple servers is a pretty foolish thing to do.
Why can't Let's Encrypt issue certs for longer than three months?
They could, they chose not to, to encourage automation.
Can the automation renew the certs indefinitely, without requiring any human intervention or attention?
Why?
Yes.. Might need to be adjusted now and then, as all systems do, but generally, yes..
I have a script that updates the certificates on my routers every ~60 days (30 days before expiry) for my SSTP servers, plus anything else they want TLS for, but SSTP is the real reason.. I haven't touched it in three years now (2021-06), other than to deploy it on another router. That is just copy&paste and setting the FDQN to be used. The first one hasn't changed.
The hard part is setting it up in the first place, many systems have walkthroughs for them.
I just bought WildCard SSL for 5 years from Namecheap for 200$ for 1 domain.
maybe my issue . but lets encrypt don't work on some of the old devices , some old android phone and windows 7 , Sp1 and Sp2 ( yeh some people still use)
By work mean , the SSL don't load on old browser and throw invalid certificate error.
Update your root certificates, it will work.
Also, SSL is long dead.. TLS replaced it.
Using a free certificate may not be the most suitable approach as you will find difficulty in renewal. In free certificates, certificate renewal can become challenging when managing a larger number of domains and subdomains with individual certificates or a single certificate covering multiple domains and subdomains. On the other hand, paid certificates from commercial CAs often provide easy renewal with better support options and warranties.