Difference between revisions of "Let's Encryp Debian 8"
Jump to navigation
Jump to search
Rafahsolis (talk | contribs) |
Rafahsolis (talk | contribs) |
||
| Line 18: | Line 18: | ||
sudo certbot certonly --standalone -d mail.domain.com | sudo certbot certonly --standalone -d mail.domain.com | ||
| − | Certificate files will be located as follows: | + | Certificate files will be located as follows (valid for 90days, TODO: Renewall cronjob): |
cert = /etc/letsencrypt/live/mail.domain.com/cert.pem | cert = /etc/letsencrypt/live/mail.domain.com/cert.pem | ||
privkey = /etc/letsencrypt/live/mail.domain.com/privkey.pem | privkey = /etc/letsencrypt/live/mail.domain.com/privkey.pem | ||
chain = /etc/letsencrypt/live/mail.domain.com/chain.pem | chain = /etc/letsencrypt/live/mail.domain.com/chain.pem | ||
fullchain = /etc/letsencrypt/live/mail.domain.com/fullchain.pem | fullchain = /etc/letsencrypt/live/mail.domain.com/fullchain.pem | ||
Latest revision as of 18:37, 18 November 2016
Cert Bot install[edit]
sudo nano /etc/apt/sources.list.d/backports.list
Put this inside the file
deb http://ftp.debian.org/debian jessie-backports main
Run:
sudo apt-get install python-certbot-apache -t jessie-backports
Apache[edit]
To generate certificates & configure apache:
certbot --apache
To generate certificates only
certbot --apache certonly
Test auto renewall with (certificates are valid for 90days):
certbot renew --dry-run
Exim4[edit]
sudo certbot certonly --standalone -d mail.domain.com
Certificate files will be located as follows (valid for 90days, TODO: Renewall cronjob):
cert = /etc/letsencrypt/live/mail.domain.com/cert.pem privkey = /etc/letsencrypt/live/mail.domain.com/privkey.pem chain = /etc/letsencrypt/live/mail.domain.com/chain.pem fullchain = /etc/letsencrypt/live/mail.domain.com/fullchain.pem