When I request a wildcard certificate I get the message “The currently selected ACME CA endpoint does not support issuing wildcard certificates.” (Latest certbot from pip)
You need to add
--server https://acme-v02.api.letsencrypt.org/directory to your Certbot command to tell it to use the ACME v2 API that supports Wildcard certificates.
Is there a way to put that into a config?
And why isn’t this mentioned anywhere?
server = https://acme-v02.api.letsencrypt.org/directory
When will this be defaulted in certbot?
I just put in a pull request for this. The post does say “Authorizations held by a V1 account will not be usable in the V2 environment - you must revalidate your domains for use with ACME v2,” which may or may not affect most automated workflows.