[Show page]
[Old revisions]
[[unknown link type]]
[
]

Differences

This shows you the differences between two versions of the page.

--- linux:certbot:deep [2018/01/22 19:01]
admin created
+++ linux:certbot:deep [2020/03/27 12:46] (current)
admin
@@ Line 14: / Line 14: @@
 =====Second method=====
 . You create some dir /var/www/I/like/it/here
 . Add to your website or many websites an exception
-     <code>
-        location /.well-known {
+Nginx
-        alias /var/www/I/like/it/here/.well-known;
+<code>
-      }
+  location /.well-known {
-      </code>
+     root /var/www/I/like/it/here/;
-. When you call certbot with webroot parameter
+}
-      certbot certonly --webroot  -d novyweb.starlab.cz
+</code>
-      here is the HTTP GET code what the remote server asks for:
+Be careful, nginx appends the location itself. Here it adds .well-known to the /i/like/it/here/.
+Apache2:
+<code>
+          alias "/.well-known" /var/www/letsencrypt/.well-known
+         <directory "var/www/letsencrypt">
+                Allowoverride None
+                Options MultiViews
+         </Directory>
+</code>
+. When you call certbot with webroot parameter
+     certbot certonly --webroot  -d novyweb.starlab.cz -w /var/www/letsencrypt/
+here is the HTTP GET code what the remote server asks for:
 <code>
@@ Line 35: / Line 52: @@
 </code>
 . And renew is easy allways the same
-      certbot renew --webroot -w /var/www/I/like/it/here
+    certbot renew --webroot -w /var/www/I/like/it/here
+===== DNS auth =====
+    /usr/src/certbot-auto certonly --manual --preferred-challenges=dns --email firma@example.cz -d example.com -d *.example.com
+===== Be careful with wsgi proxy ======
+Proxy goes first then aliases. You have to create an exeption for .well-known.
+Showing just apache2 config line
+     ProxyPass /.well-known !
 ===== Nice source =====
     * https://gist.github.com/cecilemuller/a26737699a7e70a7093d4dc115915de8

linux/certbot/deep.1516644085.txt.gz · Last modified: 2018/01/22 19:01 by admin