Let's Encrypt is a popular free, automated and open certificate authority that is widely used to provide server-side SSL certificates for many StackPath users. A bot rule has been added to the StackPath WAF to allow the Let's Encrypt validation process to work without manual intervention.
Enabling The Let's Encrypt Bot Allow Rule
To enable the rule allowing the Let's Encrypt Certbot to validate requests for creation or renewal of SSL certificates:
- Log in to the StackPath control portal at control.stackpath.com.
- Select the desired domain under the Sites section, and navigate to WAF on the left menu bar. Scroll to the bottom of the page and click Show More under Allow Known Bots.
- Enable Lets Encrypt bot by flipping the switch to On.
Confirming The Rule Works
The Let's Encrypt Certbot is typically executed from the command line interface. The user will be notified within the CLI whether or not the Certbot is able to validate the certificate. Whether successful or unsuccessful, a message will be displayed with the outcome.
The following text will be displayed if, for example, a renewal succeeds.
The following text will be displayed if a renewal is unsuccessful.
If any clarification or assistance is needed, please drop us a line at firstname.lastname@example.org or feel free to join us in 24x7 live chat through the control portal.