make letsencrypt certificate DANE TLSA ready

Post Reply
bmeirelles
Posts: 1
Joined: Fri Aug 19, 2022 4:07 pm

I need to have the certificate key maintained when the certificate is renewed.

In certbot, the equivalent is options --keep and --reuse-key when the certificate is generated, and "reuse-key = true" options in the automatic renewal /etc/letsencrypt/cli.ini file.

I would also like my certificates to use --key-type ecdsa --elliptic-curve secp384r1

How can I do this? Where are the certificate generator configuration files?

Thank you very much.

Bruno.
Post Reply