Wow. Just used @certifytheweb to move an external IT website to @LetsEncrypt (so we don't have to switch the certificate every two years) and oh my god it's incredibly simple. It literally even reconfigures the IIS website for you. Utterly phenomenal.
https://certifytheweb.com/
-
Show this thread
-
Note that Let's Encrypt does require you to have certain ports open at the time of renewal. Our sysadmin tries to not keep unnecessary ports open, which for LE means either opening the port every 60-90 days or keeping that port open permanently. Neither are really optimal.
1 reply 0 retweets 1 like
Replying to @realnzall @SwiftOnSecurity and
It does not. There are two validation methods available, HTTP and DNS. HTTP requires port 80 on the target server, but DNS just uses a TXT record on your already existing DNS server. The latter can be used for internal servers not on the Internet.
2:43 PM - 29 Mar 2018
0 replies
0 retweets
5 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.