I am building an online store and want to integrated Let’s Encrypt SSL for my client. I am expecting a large number of stores around 1000 store per week. However, if found there is a limit for generating SSL. https://letsencrypt.org/docs/rate-limits/, Can anybody help me out how I can increase this limit?
@JuergenAuer’s question is very important. If the customers are bringing their own domains, you won’t reach any limit because the limits apply separately to each domain.
If you create subdomains of your domain for each store, you would reach a limit if you issued an individual certificate for each one.
But you can also combine the subdomains into larger certificates. A Let’s Encrypt certificate can cover up to 100 names. That means you could issue only 10 certificates per week (each one covering 100 subdomains), and cover 1000 new subdomains per week. This isn’t a problem for the rate limits at all!
Combining domains into larger certificates is risky when you don’t control the domains (because if one of the certificates expired or the customer no longer pointed it to your server, you could no longer renew the certificate!), but it should be fine when they’re all subdomains of your own domain because you will always be able to renew even if a customer is no longer using a particular store.
It’s important to be aware that with the current rate limits, certificate renewals count against rate limits, but aren’t blocked by them. This means that you should schedule renewals after new certificate issuances during a given week. The renewals could prevent new issuances later in the week, but the new issuances can’t prevent renewals later in the week.
@JuergenAuer Thanks for your support dear, All domain name is diff and customers bringing them.
Is any limit from specific IP for diff domain. Like I have one big server only and all customers can apply from one single server, So is that any limit for specific IP?