RSA
Generate an RSA public/private key pair
| Plugin type | CSR | |
|---|---|---|
| Download | Built-in | |
| Compatibility | All platforms |
Description
Generates RSA key pairs. The number of key bits can be configured in settings.json but may not be less than 2048.
Command line
--csr rsa |
Activates the plugin | |
|---|---|---|
‑‑ocsp-must-staple |
Enable OCSP Must Staple extension on certificate. | |
‑‑reuse-privatekey |
Reuse the same private key for each renewal. |
Examples
| Typical | --csr rsa [‑‑ocsp-must-staple] [‑‑reuse-privatekey] |
|---|
Settings
Csr.Rsa.KeyBits |
The number of bits to use for RSA private keys, ultimately determining the strength of the encryption. Minimum is 2048.
Type: number Default: 3072
|
|
|---|---|---|
Csr.Rsa.SignatureAlgorithm |
Algorithm to use to sign CSR with RSA public key. Full list of possible options available here.
Note that not all servers will support all types of signatures. Default: "SHA512withECDSA"
|
JSON
| ID | b9060d4b-c2d3-49ac-b37f-962e7c3cbe9d |
|---|
Settings
Csr.Rsa.KeyBits |
The number of bits to use for RSA private keys, ultimately determining the strength of the encryption. Minimum is 2048.
Type: number Default: 3072
|
|
|---|---|---|
Csr.Rsa.SignatureAlgorithm |
Algorithm to use to sign CSR with RSA public key. Full list of possible options available here.
Note that not all servers will support all types of signatures. Default: "SHA512withECDSA"
|
Looking for win-acme?
simple-acme is a backwards compatible, drop-in replacement built by the same person. Project history.