To request a wildcard certificate, follow the steps below in the LoadMaster User Interface (UI):
  1. Go to Certificates & Security > ACME Certificates.
  2. Click Request New Certificate to request a wildcard certificate from the Let's Encrypt Certificate Authority (CA).
    Note: All fields on the Request New Certificate screen are optional except for Certificate Identifier and Common Name. You must select a Virtual Service and DNS provider (including related credential parameters) next to the Common Name field.
  3. Enter the unique identifier for your certificate in the Certificate Identifier field.
    Note: The Certificate Identifier value must be unique for all certificates on the LoadMaster.
  4. Enter the Fully Qualified Domain Name (FQDN) of your web server in the Common Name (The FQDN of your web server) field. For example, *.example1.com matches anything that ends in .example1.com.
  5. Select the Virtual Service that is used for this domain. This will be used for the validation challenge to prove ownership of the domain.
  6. Select the DNS provider API from Select DNS API drop-down.

    For wildcard certificate validation, the DNS-01 challenge type is used. This requires the addition and removal of temporary DNS records. For automatic DNS record updates during wildcard name validation, you must select your DNS provider from the Select DNS API drop-down list.

  7. Set the access credential parameters for the selected DNS provider. The fields to fill out vary depending on the selected DNS provider.

    The following DNS API providers are supported. Enter the required credentials as shown:

    DNS API Provider Required Credentials LoadMaster WUI Fields
    CloudFlare Username (account email address)

    Global API Key

    		 DNS API Username

    DNS API Access Key
    GoDaddy.com API Access Key

    Secret Key

    		 DNS API Access Key

    DNS API access secret/password
    DNSMadeEasy API Access Key

    Secret Key

    		 DNS API Access Key

    DNS API access secret/password
    NS1.com API Access Key DNS API Access Key
    DigitalOcean API Access Key DNS API Access Key
    Azure-DNS Subscription ID

    Directory (tenant) ID

    Application (client) ID

    Client Secret Value

    		 DNS API Subscription ID

    DNS API Username

    DNS API Application ID

    DNS API access secret/password
    Amazon-Route53 API Access Key

    Secret Key

    		 DNS API Access Key

    DNS API access secret/password
    Progress-LM-GEO DNS URL/Address Endpoint

    API Access Key

    		 DNS URL/Address Endpoint

    DNS API Access Key
    Note: CloudFlare Users: The LoadMaster ACME certificate integration with CloudFlare requires the Global API Key - not a scoped API token (User API Token). Scoped user tokens are currently not supported and will result in a DNS API error. To retrieve your Global API Key in CloudFlare:

    1. Log in to the CloudFlare dashboard.

    2. Go to My Profile > API Tokens.

    3. In the API Keys section, click View next to Global API Key.

    4. Enter this value in the API Access Key field in the LoadMaster UI.

When you are finished setting the relevant fields, click Request Certificate to create a new certificate request using the specified data. It can take approximately 25 seconds to generate the certificate request. If the request fails, you must fill out the form again. A list of issued certificates and related details are displayed at the bottom of the Manage ACME Certificates screen.