User Tools
letsencrypt_certbot
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Last revision Both sides next revision | ||
|
letsencrypt_certbot [2024/05/03 11:18] val [Настройка DNS] |
letsencrypt_certbot [2024/05/20 14:41] val [Создание сайта] |
||
|---|---|---|---|
| Line 12: | Line 12: | ||
| ===== Создание сайта ===== | ===== Создание сайта ===== | ||
| <code> | <code> | ||
| - | val@val:~$ mkdir host1.mgtu | + | val@val:~$ mkdir hostN.mgtu |
| - | val@val:~$ cat host1.mgtu/index.html | + | val@val:~$ cat hostN.mgtu/index.html |
| </code><code> | </code><code> | ||
| - | <h1>host1.mgtu.ru</h1> | + | <h1>hostN.mgtu.ru</h1> |
| </code><code> | </code><code> | ||
| - | root@val:~# cat /etc/apache2/sites-available/host1.mgtu.ru.conf | + | root@val:~# cat /etc/apache2/sites-available/hostN.mgtu.ru.conf |
| </code><code> | </code><code> | ||
| <VirtualHost *:80> | <VirtualHost *:80> | ||
| - | ServerName host1.mgtu.ru | + | ServerName hostN.mgtu.ru |
| - | DocumentRoot /home/val/host1.mgtu | + | DocumentRoot /home/val/hostN.mgtu |
| - | <Directory /home/val/host1.mgtu> | + | <Directory /home/val/hostN.mgtu> |
| Require all granted | Require all granted | ||
| </Directory> | </Directory> | ||
| </VirtualHost> | </VirtualHost> | ||
| </code><code> | </code><code> | ||
| - | root@val:~# a2ensite host1.mgtu.ru | + | root@val:~# a2ensite hostN.mgtu.ru |
| + | |||
| + | root@val:~# apachectl -t | ||
| root@val:~# systemctl reload apache2 | root@val:~# systemctl reload apache2 | ||
| </code> | </code> | ||
| - | * http://host1.mgtu.ru | + | * http://hostN.mgtu.ru |
| ===== Запрос сертификата ===== | ===== Запрос сертификата ===== | ||
| <code> | <code> | ||
| - | root@val:~# snap install --classic certbot | + | ubuntu# snap install --classic certbot |
| - | root@val:~# certbot certonly --manual -d host1.mgtu.ru | + | debian# apt install certbot python3-certbot-apache |
| + | |||
| + | root@val:~# certbot certonly --manual -d hostN.mgtu.ru | ||
| </code><code> | </code><code> | ||
| + | Enter email address (used for urgent renewal and security notices) | ||
| + | (Enter 'c' to cancel): val@bmstu.ru | ||
| ... | ... | ||
| Create a file containing just this data: | Create a file containing just this data: | ||
| Line 50: | Line 57: | ||
| ... | ... | ||
| Press Enter to Continue | Press Enter to Continue | ||
| - | ... | + | </code> |
| - | </code><code> | + | |
| - | val@val:~$ mkdir -p host1.mgtu/.well-known/acme-challenge/ | + | * !!! Оставляем эту и открываем новую консоль !!! |
| + | |||
| + | <code> | ||
| + | val@val:~$ mkdir -p hostN.mgtu/.well-known/acme-challenge/ | ||
| - | val@val:~$ cat host1.mgtu/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | val@val:~$ cat hostN.mgtu/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
| </code><code> | </code><code> | ||
| MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM | MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM | ||
| </code><code> | </code><code> | ||
| - | val@val:~$ ###curl http://host1.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | val@val:~$ curl http://hostN.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
| - | </code><code> | + | </code> |
| + | |||
| + | * !!! Возвращаемся в предыдущую консоль !!! | ||
| + | |||
| + | <code> | ||
| ... | ... | ||
| Press Enter to Continue | Press Enter to Continue | ||
| Successfully received certificate. | Successfully received certificate. | ||
| - | Certificate is saved at: /etc/letsencrypt/live/host1.mgtu.ru/fullchain.pem | + | Certificate is saved at: /etc/letsencrypt/live/hostN.mgtu.ru/fullchain.pem |
| - | Key is saved at: /etc/letsencrypt/live/host1.mgtu.ru/privkey.pem | + | Key is saved at: /etc/letsencrypt/live/hostN.mgtu.ru/privkey.pem |
| ... | ... | ||
| </code> | </code> | ||
| Line 72: | Line 86: | ||
| <code> | <code> | ||
| - | root@val:~# cat /etc/apache2/sites-available/host1.mgtu.ru.conf | + | root@val:~# cat /etc/apache2/sites-available/hostN.mgtu.ru.conf |
| </code><code> | </code><code> | ||
| ... | ... | ||
| <IfModule mod_ssl.c> | <IfModule mod_ssl.c> | ||
| <VirtualHost *:443> | <VirtualHost *:443> | ||
| - | ServerName host1.mgtu.ru | + | ServerName hostN.mgtu.ru |
| - | DocumentRoot /home/val/host1.mgtu | + | DocumentRoot /home/val/hostN.mgtu |
| - | <Directory /home/val/host1.mgtu> | + | <Directory /home/val/hostN.mgtu> |
| Require all granted | Require all granted | ||
| </Directory> | </Directory> | ||
| SSLEngine on | SSLEngine on | ||
| - | SSLCertificateFile /etc/letsencrypt/live/host1.mgtu.ru/fullchain.pem | + | SSLCertificateFile /etc/letsencrypt/live/hostN.mgtu.ru/fullchain.pem |
| - | SSLCertificateKeyFile /etc/letsencrypt/live/host1.mgtu.ru/privkey.pem | + | SSLCertificateKeyFile /etc/letsencrypt/live/hostN.mgtu.ru/privkey.pem |
| </VirtualHost> | </VirtualHost> | ||
| </code><code> | </code><code> | ||
| Line 92: | Line 106: | ||
| </code> | </code> | ||
| - | * https://host1.mgtu.ru | + | * https://hostN.mgtu.ru |
| ===== Продление сертификата ===== | ===== Продление сертификата ===== | ||
| <code> | <code> | ||
| - | root@val:~# certbot certonly --manual -d host1.mgtu.ru | + | root@val:~# certbot certonly --manual -d hostN.mgtu.ru |
| </code><code> | </code><code> | ||
| - | Renewing an existing certificate for host1.mgtu.ru | + | Renewing an existing certificate for hostN.mgtu.ru |
| - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | ||
| Line 107: | Line 121: | ||
| And make it available on your web server at this URL: | And make it available on your web server at this URL: | ||
| - | http://host1.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | http://hostN.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
| - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | ||
| Press Enter to Continue | Press Enter to Continue | ||
| </code><code> | </code><code> | ||
| - | val@val:~$ vim host1.mgtu/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | val@val:~$ vim hostN.mgtu/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
| </code><code> | </code><code> | ||
| MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM | MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM | ||
| </code><code> | </code><code> | ||
| - | val@val:~$ ###curl http://host1.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | val@val:~$ ###curl http://hostN.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
| root@val:~# service apache2 reload | root@val:~# service apache2 reload | ||
| </code> | </code> | ||
letsencrypt_certbot.txt · Last modified: 2024/05/20 14:46 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
