Certbot: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 12: | Line 12: | ||
</pre> | </pre> | ||
* Create the file <code>/etc/nginx/snippets/ssl-certbot | * Create the file <code>/etc/nginx/snippets/ssl-certbot.conf</code>: | ||
<pre> | <pre> | ||
# support for certbot ssl auto-renewal | # support for certbot ssl auto-renewal | ||
| Line 28: | Line 28: | ||
* Include the following line in the ssl config for each domain: | * Include the following line in the ssl config for each domain: | ||
<pre> | <pre> | ||
include snippets/ssl-certbot | include snippets/ssl-certbot.conf; | ||
</pre> | </pre> | ||
Revision as of 19:31, 29 November 2018
certbot connects to Let's Encrypt to obtain an SSL certificate for your server.
- Install packages
sudo add-apt-repository ppa:certbot/certbot sudo apt-get update sudo apt-get install python-certbot-nginx
- Create the file
/etc/nginx/snippets/ssl-certbot.conf:
# support for certbot ssl auto-renewal
location ^~ /.well-known/ {
default_type "text/plain";
root /var/www/html/;
}
- Create the well-known directory for verification:
mkdir -p /var/www/html/.well-known
- Include the following line in the ssl config for each domain:
include snippets/ssl-certbot.conf;
- Restart nginx
- Now run a command like this:
certbot certonly --webroot --webroot-path=/var/www/html \ -d example.com \ -d domain1.example.com \ -d domain2.example.com
- Test with this:
sudo certbot renew --dry-run