Customize the notAfter value #2394
timothyd09
started this conversation in
Ideas
Replies: 2 comments 9 replies
-
Thanks for your feedback, I wasn't aware of this option and I'll probably add it to a future version of win-acme. In the mean time...
...you could simply update your settings.json so that renewals happen less frequently. |
Beta Was this translation helpful? Give feedback.
4 replies
-
The latest release rounds to the nearest hour I believe, so you can give that a try. Forgot to mention it here in this thread, sorry. |
Beta Was this translation helpful? Give feedback.
5 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
We are using a certificate vendor (Sectigo) that issues 365 day certificates via Acme by default. I have looked for an option to set the notAfter field to a specific value but it does not appear that is an option in win-acme. When working with others in my organization, they stated that it is possible via certbot (--certificate-validity-days 90) and acme.sh (--valid-to "+90d") to request a certificate that sets a custom expiration date xxx days in the future. I would like to have my certificates start expiring after 90 days so that it doesn't renew a certificate that is still valid for 275 more days and just sitting out there. I see in the Orders json file that the notAfter value is always set to null and it should be something that could configured. Please add an option to set the notAfter value either as a Settings option or per certificate (or ideally both) so that we can have the flexibility to modify the certificate's expiration date from the CA's default.
Beta Was this translation helpful? Give feedback.
All reactions