Question

Let's Encrypt ACMEv1 protocol. You should upgrade to an ACMEv2

Hi, i got email: Beginning June 1, 2020, we will stop allowing new domains to validate using the ACMEv1 protocol. You should upgrade to an ACMEv2 compatible client before then, or certificate issuance will fail. For most people, simply upgrading to the latest version of your existing client will suffice.

I have wordpress oneclick installation. Anyone to guide me how should i do that?

Show comments

Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Want to learn more? Join the DigitalOcean Community!

Join our DigitalOcean community of over a million developers for free! Get help and share knowledge in Q&A, subscribe to topics of interest, and get courses and tools that will help you grow as a developer and scale your project or business.

Hello,

I would recommend to first try and update certbot with the following commands:

sudo apt update
sudo apt install --only-upgrade certbot

Then as mentioned by @kkinsly run the following command and add your email:

sudo certbot update_account

Then you can see ACME V2 option listed under the following folder:

/etc/letsencrypt/accounts/

If you are using only the the acme.sh script, to upgrade your ACME script, you need to first SSH to your Droplet and then run:

sudo /etc/letsencrypt/acme.sh  --upgrade -b dev

Then make the new acme.sh executable:

chmod +x /root/.acme.sh/acme.sh

Backup the old acme.sh script just in case that you need it:

mv /etc/letsencrypt/acme.sh /etc/letsencrypt/acme.sh.bak

After that create a symlink for the new updated acme.sh script and the letsencrypt directory:

ln -s /root/.acme.sh/acme.sh /etc/letsencrypt/acme.sh

Then I believe that this should work as normal.

Hope that this helps! Regards, Bobby

I tried sudo certbot --server https://acme-v02.api.letsencrypt.org/directory and then the /etc/letsencrypt/accounts directory has acme-v02.api.letsencrypt.org. Am I all set?

My certbot version is certbot 0.22.2. Shall I be concerned? Thanks in advance!

This is all I needed to do:

The steps above provided by Bobby:

sudo apt update
sudo apt install --only-upgrade certbot

Then as mentioned by @kkinsly run the following command and add your email:

sudo certbot update_account

Then you can see ACME V2 option listed under the following folder:

/etc/letsencrypt/accounts/

And then just verified using the simulation command below:

certbot renew --dry-run