servers:nginx:lets_encrypt
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
servers:nginx:lets_encrypt [2018/09/30 15:09] – [Settings] Sean Rhone | servers:nginx:lets_encrypt [2019/06/28 17:14] – Sean Rhone | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ====== Information ====== | ||
+ | * Let's Encrypt ((https:// | ||
+ | * [[Information: | ||
+ | |||
+ | ===== Prerequisites ===== | ||
+ | |||
+ | * [[distros: | ||
+ | * [[servers: | ||
+ | |||
+ | ====== Dependencies ====== | ||
+ | |||
+ | **** | ||
+ | |||
+ | sudo dnf install ' | ||
+ | |||
+ | ====== Settings ====== | ||
+ | |||
+ | * :!: Be sure to change the email address | ||
+ | * :!: Any new domains added need to be added to Namecheap as well | ||
+ | * '' | ||
+ | |||
+ | sudo -e '/ | ||
+ | |||
+ | < | ||
+ | verbose = true | ||
+ | text = true | ||
+ | non-interactive = true | ||
+ | standalone = true | ||
+ | force-renewal = true | ||
+ | agree-tos = true | ||
+ | |||
+ | email = espionage724@x | ||
+ | no-eff-email = true | ||
+ | |||
+ | rsa-key-size = 4096 | ||
+ | redirect = true | ||
+ | hsts = true | ||
+ | uir = true | ||
+ | staple-ocsp = true | ||
+ | |||
+ | pre-hook = systemctl stop ' | ||
+ | post-hook = systemctl start ' | ||
+ | |||
+ | domains = realmofespionage.xyz, | ||
+ | |||
+ | ====== Obtain Certs ====== | ||
+ | |||
+ | * :!: If it passes the dry run, remove the argument and re-run ((the dry run will likely fail the nginx restart step since the certs don't actually exist yet)) | ||
+ | |||
+ | sudo ' | ||
+ | |||
+ | ====== Automatic Cert Renewal ====== | ||
+ | |||
+ | ===== Service ===== | ||
+ | |||
+ | sudo -e '/ | ||
+ | |||
+ | < | ||
+ | [Service] | ||
+ | Type=oneshot | ||
+ | ExecStart='/ | ||
+ | ExecStartPost='/ | ||
+ | |||
+ | ===== Timer ===== | ||
+ | |||
+ | sudo -e '/ | ||
+ | |||
+ | < | ||
+ | [Unit] | ||
+ | Description=Let' | ||
+ | After=network-online.target | ||
+ | Wants=network-online.target | ||
+ | |||
+ | [Timer] | ||
+ | OnCalendar=weekly | ||
+ | Persistent=true | ||
+ | |||
+ | [Install] | ||
+ | WantedBy=multi-user.target</ |
/var/www/wiki/data/pages/servers/nginx/lets_encrypt.txt · Last modified: 2024/02/07 16:00 by Sean Rhone