Plesk & SocialBee have teamed up. Save 30% now!

Knowledge Base

Is it possible to issue wildcard Let’s Encrypt certificates via CLI?

Question

Is it possible to issue Let's Encrypt wildcard certificates over CLI?

Answer

Since SSL It! 1.4.0 it is possible to issue wildcard certificate via CLI using the following steps:

Connect to the server via SSH
Prepare:

# plesk ext sslit --certificate -issue -domain example.com -registrationEmail [email protected] -secure-domain -wildcard

(in case it is required to include SSL/TLS certificate for mail add -secure-mail parameter to the command ).

The output will get the following:

- status: pending
- message: Started issuing a wildcard SSL/TLS certificate from Let's Encrypt for the domain example.com.
- domainName: example.com
- dnsRecordType: TXT
- dnsRecordHost: _acme-challenge
- dnsRecordValue: E5QxxfidIhwnyTJUiJ7AhZjluy1JEbmCsoA9K0pvFUg
- release: obsidian
In case DNS is not managed by Plesk, add/update the _acme-challenge.example.com 'TXT' record with the challenge from dnsRecordValueon registrar side;
When the required TXT was added and could be resolved externally, complete the request:

# plesk ext sslit --certificate -issue -domain example.com -registrationEmail [email protected] -continue

Related Posts

Plesk Obsidian 18.0.62 is now available

Plesk Obsidian 18.0.61 Release

DNS_PROBE_FINISHED_NXDOMAIN: What Is It And How To Fix The Problem

Knowledge Base

Unable to issue a Let’s Encrypt certificate for a domain or its mail in Plesk: the DNS challenge used another IP address

Let’s Encrypt notification mail: Your certificate (or certificates) for the names listed below will expire in days

Unable to send mail: deferred (delivery temporarily suspended: connect to 127.0.0.1[127.0.0.1]:10024: Connection refused)

Websites on Plesk server are slow or show error 500 or PHP mail cannot be sent: ap_pass_brigade failed

Hosting Wiki