1 / 13
Mar 14

We’re pleased to announce that ACMEv2 and wildcard certificate support is live! With today’s new features we’re continuing to break down barriers for HTTPS adoption across the Web by making it even easier for every website to get and manage certificates.

ACMEv2963 is an updated version of our ACME protocol which has gone through the IETF standards process, taking into account feedback from industry experts and other organizations that might want to use the ACME protocol for certificate issuance and management some day.

Wildcard certificates1.1k allow you to secure all subdomains of a domain with a single certificate. Wildcard certificates can make certificate management easier in some cases, and we want to address those cases in order to help get the Web to 100% HTTPS. We still recommend non-wildcard certificates for most use cases.

Wildcard certificates are only available via ACMEv2. In order to use ACMEv2 for wildcard or non-wildcard certificates you’ll need a client that has been updated to support ACMEv22.4k. It is our intent to transition all clients and subscribers to ACMEv2, though we have not set an end-of-life date for our ACMEv1 API yet.

Additionally, wildcard domains must be validated using the DNS-01 challenge type. This means that you’ll need to modify DNS TXT records in order to demonstrate control over a domain for the purpose of obtaining a wildcard certificate.

For more technical information about ACMEv2 and wildcard certificates, see this post2.6k.

We’re excited about the prospect of a 100% HTTPS Web and we’re working hard to get there. As a non-profit organization, we need strong support from our community so please consider getting involved83, making a donation123, or sponsoring75 Let’s Encrypt.

  • created

    5h
  • last reply

    1h
  • 12

    replies

  • 7.7k

    views

  • 5

    users

  • 58

    likes

  • 18

    links

pinned globally 5 hours ago

split this topic 4 hours ago

Thank you so much, it’s amazing! I’ve issued my first wildcard certificate, now I’m happy :slight_smile:

split this topic 2 hours ago

A post was split to a new topic: How to issue ACMEv2 Wildcard?

Thats just great news! Thanks a lot for your work!

split this topic 2 hours ago

A post was merged into an existing topic: How to issue ACMEv2 Wildcard with Certbot 0.22.0?

split this topic 2 hours ago

A post was merged into an existing topic: ACME v2 missing JWS header with acme.sh

split this topic 1 hour ago

2 posts were split to a new topic: ACME v2 / DNS-01 for non-public facing sites?

split this topic 1 hour ago

2 posts were split to a new topic: ACME-DNS For DNS-01 Challenges

split this topic 1 hour ago

A post was merged into an existing topic: ACME v2 missing JWS header with acme.sh

closed 1 hour ago