RoE | Wiki

User Tools

Site Tools

Trace: samba lets_encrypt
servers:bsd:nginx:lets_encrypt

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
servers:bsd:nginx:lets_encrypt [2025/05/16 21:39] – external edit 127.0.0.1servers:bsd:nginx:lets_encrypt [2025/08/27 22:45] (current) – [Obtain Certs] Sean Rhone
Line 7: Line 7:
 ===== Prerequisites ===== ===== Prerequisites =====
  
-  * [[bsd:server:freebsd_14.2|FreeBSD 14.2]]+  * [[bsd:server:freebsd_14.3|FreeBSD 14.3]]
   * [[servers:bsd:nginx_php_php-fpm|nginx + PHP + PHP-FPM]]   * [[servers:bsd:nginx_php_php-fpm|nginx + PHP + PHP-FPM]]
  
Line 17: Line 17:
  
 ====== Settings ====== ====== Settings ======
- 
-  *  :!: Be sure to change the email address 
  
   su -   su -
  
-  ee '/usr/local/etc/letsencrypt/cli-custom.ini'+  mkdir -p '/usr/local/etc/letsencrypt' && ee '/usr/local/etc/letsencrypt/cli-custom.ini'
  
 <code> <code>
Line 56: Line 54:
 ====== Obtain Certs ====== ====== Obtain Certs ======
  
-  * :!: If it passes the dry run, remove the dry-run argument and re-run ((the dry run will likely fail the nginx restart step since the certs don't actually exist yet))+  * :!: If it passes the dry run, remove the ''--dry-run'' argument and re-run
  
   su -   su -
  
   certbot 'certonly' --config '/usr/local/etc/letsencrypt/cli-custom.ini' --dry-run   certbot 'certonly' --config '/usr/local/etc/letsencrypt/cli-custom.ini' --dry-run
 +
 +===== Temp Commands =====
 +
 +===== Obtain Updated Certs =====
 +
 +  * TODO: ''su - root -c'' one-shot
 +
 +  su -
 +
 +  service 'nginx' stop
 +
 +  certbot 'certonly' --config '/usr/local/etc/letsencrypt/cli-custom.ini'
 +
 +  service 'nginx' start
  
 ====== Automatic Cert Renewal ====== ====== Automatic Cert Renewal ======
/usr/local/www/wiki/data/attic/servers/bsd/nginx/lets_encrypt.1747445948.txt.gz · Last modified: by 127.0.0.1