Just manually renewing an ssl certificate for a client’s site and discovered manual SSL certificate renewal has recently changed to only allow certificates for 6 month validity instead of 12 (and a push to keep reducing the length each year until they hit max 45 days, as a push to have people use automation to renew certificates).
It looks like some providers are piggybacking off letsencrypt’s acme-certbot to make things (in principle) simpler for automating renewals - wondering if there’s a possibility in future of configuring sympl-ssl to work with other (certbot based) services (eg extend the config/ssl-provider file or a separate optional ssl-config file per domain to override using letsencrypt’s servers by default)?
Eg sectigo ssl uses certbot but specifies a server to use and 2 keys you get from the ssl provider:
sudo certbot --apache \
--server "https://acme.sectigo.com/v2/DV" \
--eab-kid "YOUR_EAB_KID" \
--eab-hmac-key "YOUR_EAB_HMAC_KEY" \
--domain yourdomain.com \
--email your-email@example.com \
--agree-tos