Hello Michael, We have documentation here.
https://www.packetfence.org/doc/PacketFence_Installation_Guide.html#_packetfence_certificates_for_v11_2_and_later We do not support the DNS method for let’s encrypt. You could replace the /usr/local/pf/raddb/certs/servert.crt and /usr/local/pf/raddb/certs/servert.key and restart radius on all servers. Thanks, Ludovic Zammit Product Support Engineer Principal Lead Cell: +1.613.670.XX Akamai Technologies - Inverse 145 Broadway Cambridge, MA 02142 Connect with Us: <https://community.akamai.com/> <http://blogs.akamai.com/> <https://twitter.com/akamai> <http://www.facebook.com/AkamaiTechnologies> <http://www.linkedin.com/company/akamai-technologies> <http://www.youtube.com/user/akamaitechnologies?feature=results_main> > On Jan 18, 2026, at 9:42 PM, Michael York via PacketFence-users > <[email protected]> wrote: > > This Message Is From an External Sender > This message came from outside your organization. > Running a cluster of 3 version 14.1 servers. > I am trying to automate the process of updating the Radius and admin > certificates using the ACME protocol. > I cannot use the Lets' Encrypt option directly. The servers are not directly > connected to the web in anyway that would make this possible. nor do I want > them to be. > I have the option to use the DNS integration with cloudflare for the > verification and use this and use that successfully on other systems. > > Basically looking for the correct way to inject the new certificate into the > cluster config safely and have the services restart. > > Any help would be great! > > Thanks > > > <Riverview_Logo_d2a36e0a-069b-4ddf-931b-d2251d96a25d.png>. . Michael > York > ICT Infrastructure Services Manager > Saint Ignatius' College Riverview > Cammeraigal Country > 115 Tambourine Bay Road, Riverview, NSW 2066 > +61 2 9882 8513 > <Riverview_Line_058c02b8-c4dc-423f-b051-7025e7209800.png> > As much as you can do, so much dare to do. > At Riverview, we value the wellbeing of our staff. If your enquiry has been > received outside standard school hours, our staff may not be available to > respond to your email. We will endeavour to respond as promptly as possible. > Thank you for your understanding and cooperation. > _______________________________________________ > PacketFence-users mailing list > [email protected] > <mailto:[email protected]> > https://urldefense.com/v3/__https://lists.sourceforge.net/lists/listinfo/packetfence-users__;!!GjvTz_vk!U5M1kyu-ircLSewiCQ-Qyz0kHwMeeQDGRB0d2A6kZofHjiFR3Elm-XdK3CMUrIoadMjvEw5y5KZxdgi5_hfj5OOdt8chRKjlNI4sGQ$
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
