From 0d7980099f7ebdf3f0416845a17c45e854a4a37d Mon Sep 17 00:00:00 2001
From: XDigital <31955226+xd1gital@users.noreply.github.com>
Date: Wed, 7 Aug 2024 15:34:44 +0700
Subject: [PATCH] Let's Encrypt recently switched their default to ECDSA
 instead of RSA; Synology only accepts RSA, so adding --keylength 2048 to
 obtain RCA certificate

---
 Synology-NAS-Guide.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Synology-NAS-Guide.md b/Synology-NAS-Guide.md
index b352296..f20fe0e 100644
--- a/Synology-NAS-Guide.md
+++ b/Synology-NAS-Guide.md
@@ -49,7 +49,7 @@ Now it's time to create the certificate for your domain:
 cd /usr/local/share/acme.sh
 export CERT_DOMAIN="your-domain.tld"
 export CERT_DNS="dns_cf"
-./acme.sh --issue --server letsencrypt --home . -d "$CERT_DOMAIN" --dns "$CERT_DNS"
+./acme.sh --issue --server letsencrypt --home . -d "$CERT_DOMAIN" --dns "$CERT_DNS" --keylength 2048
 ```
 
 ## Deploy the default certificate