Good morning, is there any way to generate the certificate for more than 3 months? either by paying certbot.
Certbot is just an ACME client. It is a program to retreive certificates from ACME enabled CAs such as Let's Encrypt. Certbot itself cannot influence the restrictions set by CAs, thus it does not matter how much you would theoretically pay the people of Certbot to change what CAs have for restrictions.
That said, Let's Encrypt only issues certs for 90 days and they do not change that, not even if someone offered them money. (Maybe if you pay them a 7 figure sum, I dunno, but then buying a cert would be cheaper.)
The free ACME enabled CA BuyPass does offer certs of 180 days lifetime, which is double that of Let's Encrypt (and other free CAs), but half of what you ask for.
You can see an overview of free CAs including BuyPass at ACME CA Comparison - Posh-ACME.
It's possible for Certbot to work with other CAs like BuyPass using the --server option.
3 Likes
There's not much point in using an ACME client like certbot if you're not going to allow it to automate getting and updating your certificates. And if it's automated, then you don't really care how long the certificate lasts since your client will just get a new one when needed.
So if you're not going to automate it, and want longer-lived certificates, and are willing to pay for it, then there are plenty of CAs out there who would be happy to help you, but Let's Encrypt probably isn't the right choice for you.
5 Likes