Install LetsEncrypt SSL certificate
From dbawiki
Configuration[edit]
- Fedora 26
- Apache 2.4
Method[edit]
Failed many times eventually to find it was python2-certbot-apache that didn't work!
./letsencrypt-auto --apache -d stuartbarkley.com
Problem on Fedora 26... python2-certbot-apache is broken so cannot be used but python3-certbot-apache works so install that.
wget http://dl.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-10.noarch.rpm rpm -ivh epel-release-7-10.noarch.rpm cd /usr/local/letsencrypt dnf install certbot-apache
certbot certonly --manual --dry-run -d stuartbarkley.com
certbot certonly --apache -d stuartbarkley.com
[root@fedora letsencrypt]# certbot certonly --apache -d stuartbarkley.com Saving debug log to /var/log/letsencrypt/letsencrypt.log Obtaining a new certificate Performing the following challenges: tls-sni-01 challenge for stuartbarkley.com We were unable to find a vhost with a ServerName or Address of stuartbarkley.com. Which virtual host would you like to choose? (note: conf files with multiple vhosts are not yet supported) ------------------------------------------------------------------------------- 1: ssl.conf | | HTTPS | Enabled ------------------------------------------------------------------------------- Press 1 [enter] to confirm the selection (press 'c' to cancel): ** Invalid input ** Press 1 [enter] to confirm the selection (press 'c' to cancel): 1 Waiting for verification... Cleaning up challenges IMPORTANT NOTES: - Congratulations! Your certificate and chain have been saved at /etc/letsencrypt/live/stuartbarkley.com/fullchain.pem. Your cert will expire on 2017-11-01. To obtain a new or tweaked version of this certificate in the future, simply run certbot again. To non-interactively renew *all* of your certificates, run "certbot renew" - If you like Certbot, please consider supporting our work by: Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate Donating to EFF: https://eff.org/donate-le
