Letsencrypt Wildcard Certificate HowTo

After the delay of the ACMEv2 including the wildcard-endpoint [2] it finally is live today [3]. In addition to the ACME v2 requirement, requests for wildcard certificates require an DNS “TXT” record to verify control over the domain.


Just “upgraded” my certificate to an root certificate follwing these steps:
1. Upgraded my certbot

2. Requested certificate (command is based on [1])

3. Followed the instructions to serve the HTTP challenge and added the DNS record for the DNS challenge.

4. Restarted my webserver

5. Done


[1] https://community.letsencrypt.org/t/confusing-on-root-domain-with-wildcard-cert/56113

[2] https://community.letsencrypt.org/t/acmev2-and-wildcard-launch-delay/53654

[3] https://community.letsencrypt.org/t/acme-v2-and-wildcard-certificate-support-is-live/55579

Leave a Reply

Your e-mail address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.