Letsencrypt DNS Verification: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Zeile 23: | Zeile 23: | ||
*certbot -d *.xx.org --server https://acme-v02.api.letsencrypt.org/directory --manual --preferred-challenges dns certonly --manual-auth-hook /usr/local/sbin/certbot-dns-validation.sh | *certbot -d *.xx.org --server https://acme-v02.api.letsencrypt.org/directory --manual --preferred-challenges dns certonly --manual-auth-hook /usr/local/sbin/certbot-dns-validation.sh | ||
=Renew certs= | =Renew certs= | ||
− | *certbot renew --cert-name xx.org --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook " | + | *certbot renew --cert-name xx.org --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook "/usr/local/sbin/ssl-service stop" --post-hook "/usr/local/sbin/ssl-service start" |
=Links= | =Links= | ||
*https://blog.v-gar.de/2018/03/lets-encrypt-wildcard-zertifikate-erstellen/ | *https://blog.v-gar.de/2018/03/lets-encrypt-wildcard-zertifikate-erstellen/ | ||
*https://blogs.msdn.microsoft.com/mihansen/2018/03/15/creating-wildcard-ssl-certificates-with-lets-encrypt/ | *https://blogs.msdn.microsoft.com/mihansen/2018/03/15/creating-wildcard-ssl-certificates-with-lets-encrypt/ |
Version vom 29. September 2019, 09:59 Uhr
certbot-dns-validation
First getting of the certs
- certbot -d worf.xmen.de --manual --preferred-challenges dns certonly --manual-auth-hook /usr/local/sbin/certbot-dns-validation.sh
Renew certs
- certbot renew --cert-name worf.xmen.de --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook "/usr/local/sbin/ssl-service stop" --post-hook "/usr/local/sbin/ssl-service start"
/usr/local/sbin/ssl-service
#!/bin/bash case $1 in start) echo ssl services start ;; stop) echo ssl services stop ;; esac:
create wildcard cert with certbot
- certbot -d *.xx.org --server https://acme-v02.api.letsencrypt.org/directory --manual --preferred-challenges dns certonly --manual-auth-hook /usr/local/sbin/certbot-dns-validation.sh
Renew certs
- certbot renew --cert-name xx.org --quiet --no-self-upgrade --manual-auth-hook /usr/local/sbin/certbot-dns-validation --pre-hook "/usr/local/sbin/ssl-service stop" --post-hook "/usr/local/sbin/ssl-service start"