Script - Cert name to Variable

AlexPebody · Sat Jun 01, 2024 5:33 pm

Hi Guys, need help...

I have some script for renew LE cert, but in my Mikrotik - ipsec identities peer is changed every time to "ca" name, when this script was running... Need get renew cert LE name and set this new name to ipsec identities peer setting.

Certs renew name like: letsencrypt-autogen_2024-06-01T13:34:03Z

/ip service enable www;
/ip firewall filter enable [find comment="LE renew Cert R3"];
/certificate/enable-ssl-certificate dns-name=example.domain;
:delay 60;
/ip firewall filter disable [find comment="LE renew Cert R3"];
/ip service disable www;

I've try use this:
:local certname [/certificate get [find key-usage=tls-client] name];
:local certname [/certificate get [name=letsencrypt*] name];

How I can get new cert name and set to my script for ipsec identities peer setting?

Thx.

AlexPebody · Sat Jun 01, 2024 6:12 pm

Sad. No any answer me... ( here is answer:

:local renewcert [ /certificate get [find common-name=example.domain] name ]; ip ipsec identity set [ find peer=ike2_peer ] certificate="$renewcert,lets-encrypt-r3.der"

rextended · Tue Jun 04, 2024 2:39 am

This is not a support forum, is an hour wait on a Saturday afternoon too long?

Script - Cert name to Variable

Script - Cert name to Variable

Re: Script - Cert name to Variable

Re: Script - Cert name to Variable