Certbot: Difference between revisions

From Wiki
Jump to navigation Jump to search
← Older editNewer edit →
No edit summary
No edit summary
Line 3: Line 3:
https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-16-04
https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-16-04


The <code>certbot</code> connects to Let's Encrypt to obtain an SSL certificate for your server.
<code>certbot</code> connects to Let's Encrypt to obtain an SSL certificate for your server.


* Install packages
* Install packages

Revision as of 18:30, 19 April 2018

https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-16-04

certbot connects to Let's Encrypt to obtain an SSL certificate for your server.

  • Install packages
sudo add-apt-repository ppa:certbot/certbot
sudo apt-get update
sudo apt-get install python-certbot-nginx
  • Create the file /etc/nginx/snippets/ssl-certbot-renewal.conf:
# support for certbot ssl auto-renewal
location ^~ /.well-known/ {
    default_type "text/plain";
    root /var/www/html/;
}
  • Include the following line in the ssl config for each domain:
include snippets/ssl-certbot-renewal.conf;
  • Restart nginx
  • Now run a command like this:
certbot certonly --webroot --webroot-path=/var/www/html \
-d example.com \
-d domain1.example.com \
-d domain2.example.com
  • Test with this:
sudo certbot renew --dry-run
Retrieved from "https://wiki.scott5.org/index.php?title=Certbot&oldid=1686"