Manage Let's Encrypt SSL certificates¶
In this guide, we will explain how to issue a Let's Encrypt SSL certificate to secure your site and the different options available.
To issue a SSL certificate with WordOps, you can use the following arguments with the commands:
wo site createwo site update
| options | description |
|---|---|
--letsencrypt / -le | issue a SSL certificate for domain or subdomain |
--letsencrypt=wildcard | issue a wildcard SSL certificate: domain.tld + *.domain.tld |
--dns / --dns=<dns_api> | use DNS API validation for Acme challenge. required for wildcard certificates |
-le is an alias for --letsencrypt. You can use this alias with all letsencrypt commands.
For example, --letsencrypt=wildcard is the same than -le=wildcard
Issuing a certificate¶
Webroot mode¶
By default WordOps use the Webroot mode to validate the domain. This mode doesn't require any additional configuration.
domain + www.domain.tld¶
To create a new site:
wo site create site.tld --wp -le
To secure an existant site:
wo site update site.tld -le
sub-domain¶
To create a new site:
wo site create sub.site.tld --wp -le
To secure an existant site:
wo site update sub.site.tld -le
DNS API mode¶
Warning
Read first our guide about DNS API configuration
domain or subdomain¶
To create a new site with Cloudflare DNS API:
wo site create site.tld --wp -le --dns=dns_cf
To secure an existant site with DigitalOcean DNS API:
wo site update sub.site.tld -le --dns=dns_dgon
wildcard¶
To create a new site with Cloudflare DNS API:
wo site create site.tld --wp --letsencrypt=wildcard --dns=dns_cf
To secure an existant site with DigitalOcean DNS API:
wo site update site.tld -le=wildcard --dns=dns_dgon