Virtual Architects Support Wiki

User Tools

Site Tools

You are here: start » internet » security » ssl_cert_letsencrypt
Trace:
internet:security:ssl_cert_letsencrypt

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision 		Previous revision
Next revision Both sides next revision
internet:security:ssl_cert_letsencrypt [2018/10/29 10:11]
127.0.0.1 external edit 		internet:security:ssl_cert_letsencrypt [2019/03/13 14:41]
gcooper
Line 23: Line 23:
  
 ==== Certify the Web ==== ==== Certify the Web ====
 +
 +**Home**: https://certifytheweb.com/
  
 **Single**: https://support.centrestack.com/hc/en-us/articles/360010229973-Obtaining-a-Server-Certificate-from-Let-s-Encrypt-Using-Certify-The-Web **Single**: https://support.centrestack.com/hc/en-us/articles/360010229973-Obtaining-a-Server-Certificate-from-Let-s-Encrypt-Using-Certify-The-Web
Line 63: Line 65:
  
 ===== Ubuntu 16.04 ===== ===== Ubuntu 16.04 =====
 +
 +==== Apache ====
 +
 +:!: This will install Apache if not already installed.
  
 https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-16-04 https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-ubuntu-16-04
Line 79: Line 85:
 certbot renew --dry-run certbot renew --dry-run
 </file> </file>
- 
-==== Troubleshooting ==== 
- 
-**Remove scheduled task and registry key** (HKEY_LOCAL_MACHINE\Software\letsencrypt-win-simple), then perform an ''iisreset'' as an administrator. 
- 
-Increase verbosity: <file>--verbose</file> 
  
 ===== Virtualmin ===== ===== Virtualmin =====
Line 105: Line 105:
  
 ===== Webmin ===== ===== Webmin =====
 +
 +<note important>Webmin works well with Apache and HTTP validation.  However, you can also use DNS validation if you don't have Apache installed and you don't want to open ports 80 and 443 in the firewall.  However, DNS validation is not documented well here, particularly renewals.</note>
 +
 +==== DNS ====
 +
 +https://serverfault.com/questions/750902/how-to-use-lets-encrypt-dns-challenge-validation
 +
 +https://certbot.eff.org/docs/using.html#manual
 +
 +:!: Add this for testing: <file>--staging</file>
 +
 +<file>
 +apt install certbot
 +
 +certbot -d hostname.yourdomain.tld --manual --preferred-challenges dns certonly
 +
 +certbot renew --dry-run
 +
 +certbot certificates
 +</file>
 +
 +==== HTTP ====
  
 **Documentation**: https://doxfer.webmin.com/Webmin/Let's_Encrypt **Documentation**: https://doxfer.webmin.com/Webmin/Let's_Encrypt
Line 120: Line 142:
 {{ :internet:security:letsencrypt_webmin_ssl_settings.png?750 |Resultant Webmin SSL Settings}} {{ :internet:security:letsencrypt_webmin_ssl_settings.png?750 |Resultant Webmin SSL Settings}}
  
-===== Zimbra =====+===== Troubleshooting =====
  
-https://lorenzo.mile.si/letsencrypt-zimbra-the-easy-way/ +**Remove scheduled task and registry key** (HKEY_LOCAL_MACHINE\Software\letsencrypt-win-simple), then perform an ''iisreset'' as an administrator.
- +
-https://github.com/YetOpen/certbot-zimbra +
- +
-==== Install CertBot ==== +
- +
-<file> +
-wget https://dl.eff.org/certbot-auto -P /usr/local/bin +
-chmod a+x /usr/local/bin/certbot-auto +
-</file> +
- +
-Obtain ''certbot-zimbra''+
- +
-<file> +
-cd /usr/local/src +
-git clone https://github.com/YetOpen/certbot-zimbra.git +
-cd certbot-zimbra +
-</file> +
- +
-Install the LetsEncrypt certificate in Zimbra:+
  
 +Increase verbosity: <file>--verbose</file>
  
internet/security/ssl_cert_letsencrypt.txt · Last modified: 2020/08/09 12:21 by gcooper

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki