Link the LoadMaster with a Let's Encrypt Account
- Last Updated: October 8, 2024
- 4 minute read
- LoadMaster
- LoadMaster GA
- Documentation
When initially configuring Let's Encrypt functionality on the LoadMaster, you must either create a new Let's Encrypt account or link to an existing account. To do this, follow the steps below in the LoadMaster User Interface (UI):
- In the main menu, go to Certificates & Security > ACME
Certificates.
- Select Let's Encrypt.
- Enter the URL of the Automated Certificate Management Environment (ACME) server in the Directory URL field and click Set Directory URL.Note: The default URL is the Let's Encrypt production ACME server: https://acme-v02.api.letsencrypt.org/directory. This can be changed as needed.The LoadMaster supports API version 2 of the ACME protocol.
- If you do not already have a Let's Encrypt account, you can
register for one by optionally entering your Email Address and clicking
Register Account.
When you register a Let's Encrypt account through the LoadMaster, a private key (account key) is generated. To reuse the same Let's Encrypt account key on another LoadMaster, take a backup of the LoadMaster (System Configuration > System Administration > Backup/Restore) and its related Certificates (Certificates & Security > Backup/Restore Certs), if available.To restore the backup on the other LoadMaster with account information only, follow the below steps:
-
Go to System Configuration > System Administration > Backup/Restore.
-
Click Choose File, browse to and select the created backup file.
-
Select the LoadMaster Base Configuration checkbox and then click Restore Configuration to restore the backup.
If the created backup includes the account details, certificates and connected virtual services information, then follow the below steps to restore the backup:
-
Go to System Configuration > System Administration > Backup/Restore.
-
Click Choose File, browse to and select the created backup file.
-
Select the LoadMaster Base Configuration and VS Configuration checkbox and then click Restore Configuration to restore the backup.
-
Then, go to Certificates & Security > Backup/Restore Certs.
-
Click Choose File, browse to and select the certificate backup file.
-
Select the type of certificates from drop-down list provided.
-
Enter the passphrase associated with the certificate backup file and click Restore Certificates.
-
- If you have an existing Let's Encrypt account,
you can upload the Account Key File, enter the Pass Phrase, and
click Upload Account Key to link to your existing account.Note: You can retrieve the account key file from other ACME clients that you registered the account with (like Certbot).
- Once you have successfully registered or linked
to your existing Let's Encrypt account, the Manage ACME Certificates
screen appears.
- You can set the Renew Period for the Let's Encrypt certificates.
The next step is to request a new certificate. Refer to the section below for instructions on how to do this.
You can click Delete ACME Configuration Parameters to remove the ACME account settings (which allows you to configure the ACME account settings from the start).