Docs / Usage
SSL Manager
Easy DevOps issues Let's Encrypt certificates using the pure Node.js acme-client library โ no certbot binary needed.
Challenge Methods
| Method | How it works | Best for |
|---|---|---|
| HTTP-01 | Easy DevOps stops nginx, binds port 80, serves the ACME challenge token, then restarts nginx. | Standard single domains and SAN certs (fastest) |
| DNS-01 | You add a _acme-challenge TXT record to your DNS provider; Easy DevOps waits for propagation, then confirms. | Wildcard certs (*.example.com) and domains behind a firewall |
๐ก Wildcard certificates (
*.example.com) require DNS-01. HTTP-01 is automatically disabled for wildcard domains.Certificate Status
| Status | Badge | Meaning |
|---|---|---|
| Healthy | VALID | Expires in > 30 days. |
| Expiring | EXPIRING | Expires in 10โ30 days. Renew soon. |
| Critical | CRITICAL | Expires in < 10 days. Immediate action needed. |
Certificate File Structure
Certificate paths
{sslDir}/{domain}/fullchain.pem โ Certificate chain
{sslDir}/{domain}/privkey.pem โ Private key
{sslDir}/.account/account.key โ ACME account key (reused across issuances)Defaults: Linux /etc/easy-devops/ssl/ ยท Windows C:\easy-devops\ssl\