SSL certificates are keys and signatures that are used to encrypt content transmitted on websites. Therefore, the acquisition of certificates requires an effective and secure process. The Let's Encrypt DV certificate generation process first requires an ACME client to perform domain name verification and obtain a certificate.

Easy HTTPs are constantly updated ACME clients. Currently, Acmev1 and Acmev2 are supported, and applications for wildcard certificates are supported.

The general procedure for the application process for the Let's Encrypt certificate is as follows:

• 1) First select the ACME client (such as Easy HTTPs);
• 2) Create CSR (certificate request) and private key (Easy HTTPs provides free tools or online generation);
• 3) Verify all domain names in the certificate;
• 4) Obtain a certificate from Let's Encrypt;
• 5) Download certificate (crt), generate pfx (for IIS), generate jks (for Tomcat/Java);
• 6) Deployment certificate
• 7) After the certificate expires, the certificate is updated and redeployed (Let's Encrypt certificate expires in 90 days and needs to be regenerated and replaced after expiration).

In order to make it easier for you to understand the complete flow of the certificate, we specifically set up a Let's Encrypt certificate generation flow chart, as shown below, for reference.

Among them:Indicates automatic renewal and automatic deployment conditions and deployment.Indicates manual renewal and manual deployment.