Letsencrypt: Unterschied zwischen den Versionen

Aus Xinux Wiki
Zur Navigation springen Zur Suche springen
 
(7 dazwischenliegende Versionen von 2 Benutzern werden nicht angezeigt)
Zeile 1: Zeile 1:
*[[Letsencrpyt Manual Way]]
+
*[[Was ist Letsencrypt]]
*[[Letsencrpyt Ubuntu 16.04]]
 
  
  
 +
=Prinzip=
 +
*https://letsencrypt.org/de/docs/challenge-types
 +
=Visit=
 +
*https://certbot.eff.org/
 
=Install=
 
=Install=
*apt-get install python-pip
+
*[[Certbot Service Update Script]]
*pip install --upgrade setuptools 
+
*[[Letsencrpyt Manual Way]]
*cd /usr/local/sbin
+
*[[Letsencrpyt Ubuntu 16.04]]
*wget https://dl.eff.org/certbot-auto
+
*[[Letsencrypt DNS Verification]]
*chmod a+x certbot-auto
+
=Prozess=
*test -d /etc/apache2/ssl || mkdir /etc/apache2/ssl
+
*https://letsencrypt.org/de/how-it-works/
*cd /etc/apache2/ssl
 
*wget https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.pem
 
 
 
=Real Install=
 
check Locales when you have problems.
 
*certbot-auto --apache certonly -d www.example.com
 
 
 
=Dry Run=
 
*certbot-auto renew --dry-run
 
 
 
 
 
*/usr/local/sbin/certbot-auto renew  --no-self-upgrade --dry-run --force-renewal --pre-hook "systemctl stop apache2.service" --post-hook "systemctl start apache2.service
 
 
 
=Apache2 Example=
 
<pre>
 
<IfModule mod_ssl.c>
 
<VirtualHost _default_:443>
 
Servername www.example.com
 
SSLCertificateFile /etc/letsencrypt/live/www.example.com/fullchain.pem
 
SSLCertificateKeyFile /etc/letsencrypt/live/www.example.com/privkey.pem
 
SSLCertificateChainFile /etc/apache2/ssl/lets-encrypt-x3-cross-signed.pem
 
Include /etc/letsencrypt/options-ssl-apache.conf
 
...
 
...
 
...
 
</VirtualHost>
 
</IfModule>
 
 
 
</pre>
 
 
 
=Cron Examples=
 
==restart service==
 
*/usr/local/sbin/certbot-auto renew --quiet --no-self-upgrade --post-hook "service apache2 restart" >> /var/log/letsencrypt.log 2>&1
 
==stop and start service==
 
*/usr/local/sbin/certbot-auto renew --quiet --no-self-upgrade  --pre-hook "service apache2 stop" --post-hook "service apache2 start" >> /var/log/letsencrypt.log 2>&1
 
==specified domain==
 
*/usr/local/sbin/certbot-auto certonly -n --apache -d www.xxxx-xx.de --post-hook  --post-hook "service apache2 start"
 
 
 
=systemctl=
 
*/usr/local/sbin/certbot-auto renew  --no-self-upgrade --pre-hook "systemctl stop apache2.service" --post-hook "systemctl start apache2.service"
 
 
 
=Don't forget to Backup this Directory because there are you Accountdata=
 
*/etc/letsencrypt
 
 
 
=nginx=
 
*https://www.bjornjohansen.no/letsencrypt-nginx
 
 
 
=Links=
 
*https://certbot.eff.org/docs/using.html
 

Aktuelle Version vom 7. September 2022, 10:39 Uhr


Prinzip

Visit

Install

Prozess

Abgerufen von „http://wiki.ixheim.de/index.php?title=Letsencrypt&oldid=34726