This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
letsencrypt_certbot [2024/05/03 10:05] val |
letsencrypt_certbot [2024/05/03 12:37] (current) val [Запрос сертификата] |
||
---|---|---|---|
Line 6: | Line 6: | ||
===== Настройка DNS ===== | ===== Настройка DNS ===== | ||
<code> | <code> | ||
- | $ host host1.mgtu.ru | + | $ host host2.mgtu.ru |
- | host1.mgtu.ru has address 195.19.40.152 | + | host2.mgtu.ru has address 195.19.40.152 |
</code> | </code> | ||
Line 33: | Line 33: | ||
</code> | </code> | ||
- | * http://val.mgtu.ru | + | * http://host1.mgtu.ru |
===== Запрос сертификата ===== | ===== Запрос сертификата ===== | ||
<code> | <code> | ||
- | root@val:~# snap install --classic certbot | + | ubuntu# snap install --classic certbot |
+ | |||
+ | debian# apt install certbot python3-certbot-apache | ||
root@val:~# certbot certonly --manual -d host1.mgtu.ru | root@val:~# certbot certonly --manual -d host1.mgtu.ru | ||
</code><code> | </code><code> | ||
+ | Enter email address (used for urgent renewal and security notices) | ||
+ | (Enter 'c' to cancel): val@bmstu.ru | ||
... | ... | ||
Create a file containing just this data: | Create a file containing just this data: | ||
Line 72: | Line 76: | ||
<code> | <code> | ||
- | root@val:~# cat /etc/apache2/sites-available/val.mgtu.ru.conf | + | root@val:~# cat /etc/apache2/sites-available/host1.mgtu.ru.conf |
</code><code> | </code><code> | ||
... | ... | ||
<IfModule mod_ssl.c> | <IfModule mod_ssl.c> | ||
<VirtualHost *:443> | <VirtualHost *:443> | ||
- | ServerName val.mgtu.ru | + | ServerName host1.mgtu.ru |
- | DocumentRoot /home/val/mgtu | + | DocumentRoot /home/val/host1.mgtu |
- | <Directory /home/val/mgtu> | + | <Directory /home/val/host1.mgtu> |
- | Require all granted | + | Require all granted |
- | </Directory> | + | </Directory> |
SSLEngine on | SSLEngine on | ||
- | SSLCertificateFile /etc/letsencrypt/live/val.mgtu.ru/fullchain.pem | + | SSLCertificateFile /etc/letsencrypt/live/host1.mgtu.ru/fullchain.pem |
- | SSLCertificateKeyFile /etc/letsencrypt/live/val.mgtu.ru/privkey.pem | + | SSLCertificateKeyFile /etc/letsencrypt/live/host1.mgtu.ru/privkey.pem |
</VirtualHost> | </VirtualHost> | ||
+ | </code><code> | ||
+ | root@val:~# apachectl -t | ||
+ | |||
+ | root@val:~# systemctl reload apache2 | ||
</code> | </code> | ||
- | * https://val.mgtu.ru | + | * https://host1.mgtu.ru |
===== Продление сертификата ===== | ===== Продление сертификата ===== | ||
<code> | <code> | ||
- | root@val:~# certbot certonly --manual -d val.mgtu.ru | + | root@val:~# certbot certonly --manual -d host1.mgtu.ru |
</code><code> | </code><code> | ||
- | Renewing an existing certificate for val.mgtu.ru | + | Renewing an existing certificate for host1.mgtu.ru |
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | ||
Line 103: | Line 111: | ||
And make it available on your web server at this URL: | And make it available on your web server at this URL: | ||
- | http://val.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | http://host1.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | ||
Press Enter to Continue | Press Enter to Continue | ||
</code><code> | </code><code> | ||
- | val@val:~$ vim mgtu/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | val@val:~$ vim host1.mgtu/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
</code><code> | </code><code> | ||
MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM | MMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM | ||
</code><code> | </code><code> | ||
- | val@val:~$ ###curl http://val.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN | + | val@val:~$ ###curl http://host1.mgtu.ru/.well-known/acme-challenge/NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN |
root@val:~# service apache2 reload | root@val:~# service apache2 reload | ||
</code> | </code> | ||