Let’s Encrypt Integration Guide

Prerequisites

Before beginning, ensure the following:

Note: Let’s Encrypt uses the ACME (Automated Certificate Management Environment) protocol for automated certificate issuance and renewal. Ensure your DNS provider supports API-based validation for automated domain verification.

Deployment Steps

  1. Navigate to Connectors Page

    In CertSecure UI:

    • Go to Administration > Certificate Authorities.

    • Under Agentless CAs, select Configure under Let’s Encrypt.

      certificate authorities certsecure manager
  2. Configure ACME URL

    On the ACME Configuration page:

    Note: Use the staging URL for testing to avoid rate limits during initial setup.

    add url certsecure manager
  3. Add Domain with Credentials

    On the Domain Configuration page:

    1. Enter the Domain Name you want to validate (e.g., example.com).
    2. Select your DNS Provider from the dropdown.

    3. Enter the DNS Provider Credentials:

      1. API Key or Access Token
      2. Secret Key (if required)
      3. Additional authentication parameters as needed by your DNS provider
    4. Click on save
      5. add domain certsecure manager
  4. Domain Auto-Validation
    1. After saving the CertSecure will automatically validate the domain for ACME use through DNS-01 challenge.
    2. Wait for the validation status to show Active.
    domain table certsecure manager
  5. Verify CA Availability

    In CertSecure UI:

    1. Go to Administration > Certificate Authorities > Manage CAs
    2. Verify that Let’s Encrypt appears in the list of available Certificate Authorities.
    ca management certsecure manager

Post-Installation Verification

  • Navigate to Enrollment > Generate Certificate
  • Select Let’s Encrypt as the Certificate Authority.
  • Request a test certificate to verify that the integration is working correctly.
generate certificate certsecure manager