In Console
THIS WAS NOT REQUIRED WHEN I WORKED ON CSMCL.IN. So this step can be dropped.
Comment listen 443 to #listen 443 in /etc/httpd/conf.d/ssl.conf using NANO
(Still to figure out if above line is mandatory or not. Will check when installing it in third server)
Later Check certs
yum install certbot
python2-certbot-apache mod_ssl openssl
(If it shows any error, then yum install
epel-release and run above command again)
THIS WAS NOT REQUIRED WHEN I WORKED ON CSMCL.IN. So this step can be dropped.
Comment listen 443 to #listen 443 in /etc/httpd/conf.d/ssl.conf using NANO
(Still to figure out if above line is mandatory or not. Will check when installing it in third server)
THERE ARE 2 DASHES BEFORE APACHE BELOW.
certbot –apache for enabling ssl in all sites on the server
certbot –apache –d
domain1 –d domain 2 for enabling ssl on
selected domains
if it fails, use certbot -d domain1 -d domain2 (using -apache causes issue in some systems)
Rest is fully automatic
if it fails, use certbot -d domain1 -d domain2 (using -apache causes issue in some systems)
Rest is fully automatic
Later Check certs
certbot
certificates
One click renew all expiring certs
certbot
renew
/// In case you have to delete a cert
certbot revoke --cert-path /etc/letsencrypt/live/CERTNAME/cert.pem
certbot delete --cert-name example.com
Comments