Versions Compared
compared with
Key
- This line was added.
- This line was removed.
- Formatting was changed.
| Info |
|---|
To Know about letsEncrypt and its working please refer to |
this blog. |
Generating certificates can be achieved in two ways
- Manual
- Automated
Manual
Please follow the steps mentioned below to generate the certificates manually
- Install acme.sh
| Code Block | ||
|---|---|---|
| ||
curl https://get.acme.sh | sh |
- DNS manual mode
| Code Block | ||
|---|---|---|
| ||
acme.sh --issue --dns -d aa.com -d www.aa.com |
- Please make sure that you get an output like the one below:
| Code Block | ||
|---|---|---|
| ||
Add the following txt record: Domain:_acme-challenge.aa.com Txt value:9ihDbjYfTExAYeDs4DBUeuTo18KBzwvTEjUnSwd32-c Add the following txt record: Domain:_acme-challenge.www.aa.com Txt value:9ihDbjxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Please add those txt records to the domains. Waiting for the dns to take effect. |
- Rerun with
renewargument:
| Code Block | ||
|---|---|---|
| ||
acme.sh --renew -d aa.com |
Automated
Lego can be used to automate the process of generating certificates. Currently it comes with multiple optional DNS providers.
- Download the latest version from releases -> https://github.com/xenolf/lego/releases
- Install golang -> https://golang.org/doc/install
- Obtain a certificate using the DNS challenge and AWS Route 53
| Code Block | ||
|---|---|---|
| ||
AWS_REGION=us-east-1 AWS_ACCESS_KEY_ID=my_id AWS_SECRET_ACCESS_KEY=my_key lego --email="foo@bar.com" --domains="example.com" --dns="route53" run |
| Panel | ||||||
|---|---|---|---|---|---|---|
| ||||||
|