Create wildcard Lets Encrypt ssl with acme.sh
Let's Encrypt is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG).
acme.sh is A pure Unix shell script implementing ACME client protocol
to create a wildcard ssl from a domain.com simply with command:
"/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" --issue -d domain.com -d '*.domain.com' --dns --yes-I-know-dns-manual-mode-enough-go-ahead-please --force
after run command above, we need setup dns record manually for two txt records:
_acme-challenge.domain.com
and then run again with --renew command option:
"/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" --issue -d domain.com -d '*.domain.com' --dns --yes-I-know-dns-manual-mode-enough-go-ahead-please --force --renew
we can use dns api setup to automatically those txt records.