Difference between revisions of "Let's Encrypt"
Jump to navigation
Jump to search
(→Notes) |
(→Notes) |
||
Line 8: | Line 8: | ||
** [https://certbot.eff.org/ CertBot instructions] | ** [https://certbot.eff.org/ CertBot instructions] | ||
*** [https://certbot.eff.org/docs/using.html CertBot User Guide] | *** [https://certbot.eff.org/docs/using.html CertBot User Guide] | ||
+ | * [https://crt.sh/ domain listing] | ||
+ | ** e.g. [https://crt.sh/?q=htyp.org htyp.org] | ||
===Files=== | ===Files=== | ||
* <code>/etc/letsencrypt/</code> | * <code>/etc/letsencrypt/</code> |
Revision as of 14:40, 13 December 2021
This page is a seed article. You can help HTYP water it: make a request to expand a given page and/or donate to help give us more writing-hours!
|
Related
Notes
Files
/etc/letsencrypt/
- +
archive/
- contains one folder per domain- +
<domain folder>/
-- folder names are arbitrary, specified inrenewal/
files
- +
- +
live/
- +
<domain name>
- contains links to the current files
- +
- +
renewal/
- contains configurations to load (equivalent tosites-enabled/
in Apache/Nginx)
- +
I'm guessing that LE adds a new fileset to archive/<domain folder>/
for each renewal, and updates the links in live/<domain name>
.
Errors
Error requesting challenges: Error creating new authz :: Validations for new domains are disabled in the V1 API
- This is because of the End of Life Plan for ACMEv1
- If you've been using Let's Encrypt via VirtualMin, you may have to actually install CertBot (apparently VirtualMin has its own method of handling renewals but will use CertBot if it is installed) - instructions here, but basically:
apt install socat certbot
certbot register
Links
- certificate lookup: replace
htyp.org
with any domain. Use %domain for wildcard matches.