I've got a wrapper script around that, and I configured my apache management scripts to reverse proxy the acme-verification uris to letsencrypt-nosudo do you have a repo of that? should be https://github.com/diafygi/acme-nosudo I don't have a repo of my scripts, no I can throw them up on my site, though this setup is old ... it is from the begining of letsencrypt and i sould already structure it new lol, letsencrypt-nosudo (apparently now acme-nosudo) is a bit old too maddl: Here's the wrapper script I use. https://dl.tyzoid.com/security/sign.sh It's quickly hacked together, so a lot of the paths are hardcoded thanks maddl: Here's my apache mksite script: https://dl.tyzoid.com/security/mksite.sh Might need some adaptation, since you use nginx but the workflow for me is `$ mksite `, `$ sign ` `$ vim ` your scripts are more for inspiration than to copy-paste it :) That last step is me just uncommenting all the commented out lines in the domain config perhaps ill make a more general setup and publish it on github ... Go for it! we will se If you do, just be sure to credit my stuff if you use it. I release pretty much all my stuff as MIT