====== Information ======

  * Let's Encrypt ((https://letsencrypt.org))
  * Certbot ((https://certbot.eff.org))
  * [[Information:Realm of Espionage]]

===== Prerequisites =====

  * [[windows:10|Windows 10]]
  * [[servers;windows;nginx_php_php-cgi|nginx]] ((Certbot doesn't necessarily require nginx; if not using nginx then port 443/tcp likely needs to be opened))

====== Install ======

===== Python =====

  * https://www.python.org/downloads/windows/

  * Install ''pip'' and add to PATH

===== Certbot =====

****

  pip install "certbot"

==== Update ====

****

  pip install --upgrade "certbot"

====== Settings ======

  *  :!: Be sure to change the email address
  * :!: Any new domains added need to be added to Namecheap as well
  * ''must-staple = true'' is disabled due to being incompatible with Firefox ((last tested 2019/06/28 with Firefox 67.0.4; it didn't work; likely a config error on my part since this hasn't worked at all since 2018))

  MKDIR "%SystemDrive%\Certbot\"

  notepad++ "%SystemDrive%\Certbot\cli-custom.ini"

<code>
verbose = true
text = true
non-interactive = true
standalone = true
force-renewal = true
agree-tos = true

##########
#CHANGEME#
##########

email = espionage724@x

##########
#CHANGEME#
##########

no-eff-email = true

rsa-key-size = 4096
redirect = true
hsts = true
uir = true
staple-ocsp = true

domains = realmofespionage.xyz, blog.realmofespionage.xyz, files.realmofespionage.xyz, media.realmofespionage.xyz, social.realmofespionage.xyz, test.realmofespionage.xyz, wiki.realmofespionage.xyz, wow.realmofespionage.xyz

# End</code>

====== Obtain Certs Test ======

****

  certbot "certonly" --config "%SystemDrive%\Certbot\cli-custom.ini" --dry-run

====== Batch File ======

  notepad++ "%UserProfile%\Desktop\Certbot Cert Renewal.bat"

<code>
:: Stop nginx
CD "%SystemDrive%\nginx-"*"\"
"nginx.exe" -s quit

:: Update pip
CD "%ProgramFiles%\Python"*"\"
"python.exe" -m "pip" install --upgrade "pip" --quiet

:: Update Certbot
pip install --upgrade "certbot" --quiet

:: Renew Certs
certbot "certonly" --config "%SystemDrive%\Certbot\cli-custom.ini" --quiet

:: Start nginx
CD "%SystemDrive%\nginx-"*"\"
START cmd.exe /c "nginx.exe"

:: End</code>

  "%UserProfile%\Desktop\Certbot Cert Renewal.bat"