acme.sh --issue --dns dns_cf --keylength 4096 -d domain.com -d '*.domain.com'

Here is how to install SSL certs using acme.sh that will work with haProxy acme.sh \ --install-cert \ -d domain.com \ --reloadcmd \ "cat \$CERT_KEY_PATH \$CERT_FULLCHAIN_PATH >/etc/haproxy/ssl/domain.com && \ service haproxy reload"

This is very useful when you have everything redirected with NGiNX to HTTPS, but acme.sh/LetsEncrypt requires HTTP for verification. server { listen 80; server_name DOMAIN.COM; root HTTP_ROOT; location ^~ /.well-known/acme-challenge/ { try_files $uri =404; } location / { return 301 https://DOMAIN.COM$request_uri; } }

First you have to install acme.sh. I like using acme.sh because it’s all bash based. As with all posts I take no responsibility for anything and this is more of a quick help instead of a full guide. I have a script that I use to deploy my WordPress sites. The only thing I recommend is if you use it make sure to add the xml-rpc.php block. I haven’t added that to it yet.