Hi, I am just setting up LetsEncrypt certificates for a small Global Protect deployment and use pretty much the method that you suggest. I use a separate linux box to handle the certificate creation and renewal and have an upload script to upload the certificate via the api with a simple curl command. This however does not currently work as the certificate gets imported via the API without the private key. If I use the web GUI, the certificate works fine, complete with the private key - is this a bug? Native LE support would be great, however at least being able to upload the cert via the API would make life a lot easier (assuming that I am not just doing something wrong!).
... View more