Letsencrypt DNS Verification: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 6: | Zeile 6: | ||
=Renew certs= | =Renew certs= | ||
| − | *certbot renew --cert-name worf.xmen.de --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook " | + | *certbot renew --cert-name worf.xmen.de --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook "/usr/local/sbin/ssl-service stop" --post-hook "/usr/local/sbin/ssl-service start" |
| − | == | + | ==/usr/local/sbin/ssl-service== |
| − | + | <pre> | |
| + | #!/bin/bash | ||
| + | case $1 in | ||
| + | start) | ||
| + | echo ssl services start | ||
| + | ;; | ||
| + | stop) | ||
| + | echo ssl services stop | ||
| + | ;; | ||
| + | esac: | ||
| + | </pre> | ||
=create wildcard cert with certbot= | =create wildcard cert with certbot= | ||
Version vom 29. September 2019, 09:59 Uhr
certbot-dns-validation
First getting of the certs
- certbot -d worf.xmen.de --manual --preferred-challenges dns certonly --manual-auth-hook /usr/local/sbin/certbot-dns-validation.sh
Renew certs
- certbot renew --cert-name worf.xmen.de --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook "/usr/local/sbin/ssl-service stop" --post-hook "/usr/local/sbin/ssl-service start"
/usr/local/sbin/ssl-service
#!/bin/bash case $1 in start) echo ssl services start ;; stop) echo ssl services stop ;; esac:
create wildcard cert with certbot
- certbot -d *.xx.org --server https://acme-v02.api.letsencrypt.org/directory --manual --preferred-challenges dns certonly --manual-auth-hook /usr/local/sbin/certbot-dns-validation.sh
Renew certs
- certbot renew --cert-name xx.org --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook "certbot-update stop" --post-hook "certbot-update start"