Previously mentioned in the window environment to generate the SSL wildcard domain name certificate method is:https://www.cnblogs.com/duanweishi/p/9491209.html The following is a manual renewal of the SSL Certificate in the window Environment //view the certificate expiration time OpenSSL X509-NOOUT-DATES-IN/ETC/LETSENCRYPT/LIVE/YINGXIAOBU.COM/CERT.PEM //renew&replace Renew and replace sudo certbot certonly -d *.yingxiaobu.com--manual--preferred-challenges The DNS--server https://acme-v02.api.letsencrypt.org/directory //generates a PFX file for use with the IIS binding SSL certificate cd/etc/letsencrypt/live/ Yingxiaobu.com/openssl pkcs12-export-out yingxiaobu.pfx-inkey privkey.pem-in fullchain.pem-certfile cert.pem / /iis Replace the original website Certificate//iis server certificate, delete the original certificate//reference here to install the PFX certificate generated above https://jingyan.baidu.com/article/ 455a9950a95aa3a1662778da.html//find the corresponding IIS site >> bindings to re-select the certificate you just made//end up with chrome open your site Click Security on the left side of the address bar to see if the certificate's expiration time is up to date.  //CENTOS7 manually replace the SSL certificate//through Nginx conf file to find the directory of the certificate, and then use \etc\letsencrypt\archive\yingxiaobu.com\ under the latest FULLCHAIN.PEM and Privkey.pem replace the old file with the same name. Perform the following command to restart Nginx systemctl stop nginx.servicesystemctl start nginx.service//end up with chrome open yourSite, click Security on the left side of the address bar to see if the certificate's expiration time is up to date.
< pro-Test >WINDOW+IIS+LETSENCRYPT+SSL manual Renewal (wildcard domain name)
