NAS -- Obtained Cert with UI on Synology

Hi,

All is well. A while back I was able to circumvent my port 80 issue to get a cert through my Synology UI by enabling a VPN and opening the VPN port.

What I am curious about is, since I instituted the cert 6+ months ago, it has been updating automatically it seems. I was not aware was a feature on Synology. In fact, I cannot confirm the feature in the UI. But it seems to work. Is anyone aware that Synology NAS now auto-pulls new certs from LE?

From the Synology knowledge base (source:

Certificates issued by Let’s Encrypt are valid for 90 days. Before the certificates expire, DSM will automatically renew such certificates after successful domain validation. Please make sure your Synology NAS and router have port 80 open for certificate renewal.

The thing is, the workaround I did to put a VPN on my NAS to open port 80 (my ISP blocks port 80) I’ve only done with the initial cert obtainment.

I haven’t opened port 80 since, and somehow it’s renewing automatically. Have I just gotten lucky? :four_leaf_clover:

For synology.me domains, the Synology Let’s Encrypt client can upload a TXT record to the synology.me DNS servers for Let’s Encrypt to use for verification, instead of using a file that must be accessible on port 80.

They must have added this helpful feature between the time you first got your certificate and the time your first renewal came around, so you did get lucky. :wink:

1 Like

Can’t complain about being lucky from time to time. Thanks for your reply. :slight_smile:

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.