Letsencrypt: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) |
Thomas (Diskussion | Beiträge) |
||
Zeile 19: | Zeile 19: | ||
=Apache2 Example= | =Apache2 Example= | ||
<pre> | <pre> | ||
+ | <IfModule mod_ssl.c> | ||
+ | <VirtualHost _default_:443> | ||
+ | Servername www.example.com | ||
SSLCertificateFile /etc/letsencrypt/live/www.example.com/fullchain.pem | SSLCertificateFile /etc/letsencrypt/live/www.example.com/fullchain.pem | ||
SSLCertificateKeyFile /etc/letsencrypt/live/www.example.com/privkey.pem | SSLCertificateKeyFile /etc/letsencrypt/live/www.example.com/privkey.pem | ||
SSLCertificateChainFile /etc/apache2/ssl/lets-encrypt-x3-cross-signed.pem | SSLCertificateChainFile /etc/apache2/ssl/lets-encrypt-x3-cross-signed.pem | ||
Include /etc/letsencrypt/options-ssl-apache.conf | Include /etc/letsencrypt/options-ssl-apache.conf | ||
+ | ... | ||
+ | ... | ||
+ | ... | ||
+ | |||
+ | </VirtualHost> | ||
+ | </IfModule> | ||
+ | |||
</pre> | </pre> | ||
+ | |||
=Cron Examples= | =Cron Examples= | ||
==restart service== | ==restart service== |
Version vom 12. März 2017, 16:03 Uhr
Install
- pip install --upgrade setuptools
- cd /usr/local/sbin
- wget https://dl.eff.org/certbot-auto
- chmod a+x certbot-auto
- test -d /etc/apache2/ssl || mkdir /etc/apache2/ssl
- cd /etc/apache2/ssl
- wget https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem
Real Install
- certbot-auto certonly
Dry Run
- certbot-auto renew --dry-run
- /usr/local/sbin/certbot-auto renew --no-self-upgrade --dry-run --force-renewal --pre-hook "systemctl stop apache2.service" --post-hook "systemctl start apache2.service
Apache2 Example
<IfModule mod_ssl.c> <VirtualHost _default_:443> Servername www.example.com SSLCertificateFile /etc/letsencrypt/live/www.example.com/fullchain.pem SSLCertificateKeyFile /etc/letsencrypt/live/www.example.com/privkey.pem SSLCertificateChainFile /etc/apache2/ssl/lets-encrypt-x3-cross-signed.pem Include /etc/letsencrypt/options-ssl-apache.conf ... ... ... </VirtualHost> </IfModule>
Cron Examples
restart service
- /usr/local/sbin/certbot-auto renew --quiet --no-self-upgrade --post-hook "service apache2 restart" >> /var/log/letsencrypt.log 2>&1
stop and start service
- /usr/local/sbin/certbot-auto renew --quiet --no-self-upgrade --pre-hook "service apache2 stop" --post-hook "service apache2 start" >> /var/log/letsencrypt.log 2>&1
specified domain
- /usr/local/sbin/certbot-auto certonly -n --apache -d www.xxxx-xx.de --post-hook --post-hook "service apache2 start"
systemctl
- /usr/local/sbin/certbot-auto renew --no-self-upgrade --pre-hook "systemctl stop apache2.service" --post-hook "systemctl start apache2.service
Don't forget to Backup this Directory because there are you Accountdata
- /etc/letsencrypt