Let's Encrypt encourages the use of certbot to automate certificate renewal, but that tool generates a new CSR every time. That makes DANE with TLSA difficult, so this set of scripts automates the renewal of consistent CSRs with certbot so systems administrators can choose when to generate a new CSR and update their DNS records in anticipation.
letsencrypt
certbot
letsencrypt-utils
dane
tlsa
letsencrypt-certificates
lets-encrypt
certbot-ssl
certbot-client
-
Updated
Apr 20, 2023 - Shell