simple-acme

A swiss army knife for ACME certificate management.
Easy to get started, surprisingly versatile.

Features

  • A simple text menu to get free certificates from Let’s Encrypt into IIS.
  • An advanced menu with options for many other use cases, including Apache and Exchange.
  • Creates a scheduled task or cronjob to automatically renew when needed.
  • Supports wildcards (*.example.com) and international domains names (证书.example.com).
  • Supports up to 4096 bit RSA keys, Elliptic Curve crypto (ECC) or bring-your-own-CSR.
  • Handle HTTP challenges from a virtual or local folder, network share, SFTP, FTPS, WebDav or REST.
  • Handle DNS challenges with 20+ plugins for cloud providers, acme-dns or your own scripts.
  • Store certificates in the Windows Store, IIS CCS, PEM files, PFX/PKCS12 files or Azure KeyVault
  • Send notifications on success and/or failure.
screenshot
Getting started
Installing simple-acme on your server and getting your first certificate.
Download
Downloads for various operating systems and platforms.
Manual
How to get the most out of the tool.
Reference
All command line switches and options available in settings.json.
Support
Where to go when something's not working the way it's supposed to.
Plugins
Which kinds of plugins exists, how to get them and how to build them.

Compatibility

Automation

  • Completely unattended operation from the command line.
  • xcopy installation and upgrade process.
  • Available on NuGet.org as a dotnet tool.
  • Secret management allowing central rotation of API keys (protected by Windows DPAPI).
  • Manipulate .renewal.json files to manage renewals outside of the tool.
  • Write your own Powershell .ps1 scripts to handle installation and validation.
  • Build your own plugins with C#.

Sponsors

Without the following kind individuals and organisations donating, simple-acme would not be possible. Interested in sponsoring the project? Check out GitHub Sponsors or Patreon.
Leaving a ★ on the repository is also appreciated!
eGov Strategies eGov Strategies
Insurance Technology Services Insurance Technology Services
Enzure Enzure
e-shop LTD
The Proof Group @proofgroup
imagenia.fr

Looking for win-acme?

simple-acme is a backwards compatible, drop-in replacement built by the same person. Project history.