Skip to content

Instantly share code, notes, and snippets.

@adrianharabula

adrianharabula/renew_ssl_synology.md

Forked from huettern/renew_ssl_synology.md
Created December 29, 2021 11:43
Show Gist options
  • Save adrianharabula/00e0072102409b53fb02c2d55f9a758d to your computer and use it in GitHub Desktop.
Save adrianharabula/00e0072102409b53fb02c2d55f9a758d to your computer and use it in GitHub Desktop.
Download ZIP
Wildcard certificate on Synology NAS
Raw
renew_ssl_synology.md

Use certbot to create a wildcard certificat with DNS challenge

DOMAIN="example.com"
sudo certbot certonly  --manual --manual-public-ip-logging-ok --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory -d "*.$DOMAIN"

Follow the instructions on the console and create the DNS TXT record.

Copy the generated files to a working directory

sudo cp /etc/letsencrypt/live/$DOMAIN/{fullchain.pem,privkey.pem} ~/Desktop

Change ownership to current user

sudo chown $USER ~/Desktop/*.pem

In Synology DSM, add new certificate, replace certificate and choose the expired certificate. Use fullchain.pem as certificate and privkey.pem as private key file.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment