Differences

This shows you the differences between two versions of the page.

--- ubuntu:certificates:let_s_encrypt_certificates [2020/05/19 09:50] – peter
+++ ubuntu:certificates:let_s_encrypt_certificates [2021/07/05 08:52] (current) – peter
@@ Line 1: / Line 1: @@
 ====== Ubuntu - Certificates - Let's Encrypt Certificates ======
+----
+[[Ubuntu:Certificates:Let's Encrypt Certificates:Create and Update a LetsEncrypt SSL Certificate with CertBot|Create and Update a LetsEncrypt SSL Certificate with CertBot]]
+----
 Install the Let's Encrypt client, certbot:
@@ Line 88: / Line 94: @@
 </code>
+</WRAP>
+----
+===== Generate your first cert =====
+To generate your first cert, open a shell and execute the letsencrypt-auto script
+<code bash>
+# cd /root/letsencrypt
+# ./letsencrypt-auto --config /etc/letsencrypt/configs/example.com.conf certonly
+Updating letsencrypt and virtual environment dependencies.......
+Running with virtualenv: /root/.local/share/letsencrypt/bin/letsencrypt --config /etc/letsencrypt/configs/mydomain.conf certonly
+IMPORTANT NOTES:
+ - Congratulations! Your certificate and chain have been saved at
+   /etc/letsencrypt/live/www.example.com/fullchain.pem. Your cert will
+   expire on 2016-02-05. To obtain a new version of the certificate in
+   the future, simply run Let's Encrypt again.
+</code>
+<WRAP info>
+**NOTE:**  The **certonly** command: we only want to issue certificates and don't want the client to fiddle with our nginx config.
 </WRAP>
@@ Line 171: / Line 200: @@
 done
-**TODO:** Check if letsencrypt-auto is now certbot-auto.
+<WRAP todo>
+**TODO:** Check if letsencrypt-auto is now certbot-auto.
+</WRAP>
 # make sure nginx picks them up
@@ Line 244: / Line 276: @@
 IMPORTANT:  A DNS entry must exist for the * so ensure this is added.
 </WRAP>
+----
+===== To Renew manually =====
+<code bash>
+letsencrypt certonly --webroot -w /var/www/peterroux.com -d peterroux.com -d www.peterroux.com
+</code>