I use LetsEncrypt on my Ubuntu 16.04 Server with Apache 2.4 and OpenSSL 1.0.2h. But I would like to use Elliptic Curve certificates.
I know that LE supports ECC, but as far as I know there is no “official” way how to work with ECC. Because using the standard client, I am not able to request, install or renew ECC, right? I need to create CSR, request new certificate, install it and when I need to renew it, I have to do it again manually.
So is there any way how to make it more simple? How to request the certificate easily and when it’s time for renewal, just renew it automatically by replacing the old certificates? Something like with RSA keys - letsencrypt certonly -d domain.com -d www.domain.com --rsa-key-size 4096 and when renewing letsencrypt renew.
Or how do you work with elliptic certificates?