Let's Encrypt ACMEv1 protocol. You should upgrade to an ACMEv2

January 15, 2020 726 views
Let's Encrypt

Hi, i got email:
Beginning June 1, 2020, we will stop allowing new domains to validate using
the ACMEv1 protocol. You should upgrade to an ACMEv2 compatible client before
then, or certificate issuance will fail. For most people, simply upgrading to
the latest version of your existing client will suffice.

I have wordpress oneclick installation. Anyone to guide me how should i do that?

3 Answers

Hello,

To upgrade your ACME script, you need to first SSH to your Droplet and then run:

sudo /etc/letsencrypt/acme.sh  --upgrade -b dev

Then make the new acme.sh executable:

chmod +x /root/.acme.sh/acme.sh

Backup the old acme.sh script just in case that you need it:

mv /etc/letsencrypt/acme.sh /etc/letsencrypt/acme.sh.bak

After that create a symlink for the new updated acme.sh script and the letsencrypt directory:

ln -s /root/.acme.sh/acme.sh /etc/letsencrypt/acme.sh

Then I believe that this should work as normal.

Hope that this helps!
Regards,
Bobby

Found the easiest solution. Run below script and add your email

sudo certbot update_account

Now you can see ACME V2 option listed under

 /etc/letsencrypt/accounts/
  • “certbot: error: unrecognized arguments: update_account” :(

    • try updating certbot to version 1.0

      for yum use

      sudo yum update certbot
      
      • thx kkinsly but I’m on Ubuntu. I ran:

        sudo apt-get update
        sudo apt-get install –only-upgrade certbot

        and it upgraded from .18 to .27 … is there a 1.0 version already? should I add another repository or why I can’t upgrade to 1.0?

        thx in advance!

  • Now I see acme-v02.api.letsencrypt.org folder… how do I know if that’s the one been used by certbot and not v01 or staging-v02?

Have another answer? Share your knowledge.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!