# yum install epel-release
# wget https://dl.eff.org/certbot-auto
# mv certbot-auto /usr/local/bin/certbot-auto
# chmod 0755 /usr/local/bin/certbot-auto
Execute the command that only obtains the certificate without changing the Apahce settings The first time you need SCL repository and python, so install as instructed
# /usr/local/bin/certbot-auto certonly --apache
Complete!
Creating virtual environment...
Installing Python packages...
Installation succeeded.
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Enter email address (used for urgent renewal and security notices)
(Enter 'c' to cancel):
Cancel once
-d is the DNS Name of SANs -m is the contact email address
# /usr/local/bin/certbot-auto certonly --manual
--server https://acme-v02.api.letsencrypt.org/directory
--preferred-challenges dns
--agree-tos
--manual-public-ip-logging-ok
-d *.example.com -d example.com
-m [email protected]
A challenge will be displayed, so register the TXT record in your DNS
Please deploy a DNS TXT record under the name
_acme-challenge.example.com with the following value:
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Before continuing, verify the record is deployed.
Press Enter to Continue
After registering, wait until the DNS record is reflected (about 10 minutes) and then execute Enter. If successful, the following will be displayed
IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/example.com/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/example.com/privkey.pem
Donate to Let's Encrypt
Recommended Posts