Versions Compared
compared with
Key
- This line was added.
- This line was removed.
- Formatting was changed.
Info |
---|
To Know about letsEncrypt and its working please refer to |
this blog. |
Generating certificates can be achieved in two ways
- Manual
- Automated
Manual
Please follow the steps mentioned below to generate the certificates manually
- Install acme.sh
Code Block | ||
---|---|---|
| ||
curl https://get.acme.sh | sh |
- DNS manual mode
Code Block | ||
---|---|---|
| ||
acme.sh --issue --dns -d aa.com -d www.aa.com |
- Please make sure that you get an output like the one below:
Code Block | ||
---|---|---|
| ||
Add the following txt record: Domain:_acme-challenge.aa.com Txt value:9ihDbjYfTExAYeDs4DBUeuTo18KBzwvTEjUnSwd32-c Add the following txt record: Domain:_acme-challenge.www.aa.com Txt value:9ihDbjxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Please add those txt records to the domains. Waiting for the dns to take effect. |
- Rerun with
renew
argument:
Code Block | ||
---|---|---|
| ||
acme.sh --renew -d aa.com |
Automated
Lego can be used to automate the process of generating certificates. Currently it comes with multiple optional DNS providers.
- Download the latest version from releases -> https://github.com/xenolf/lego/releases
- Install golang -> https://golang.org/doc/install
- Obtain a certificate using the DNS challenge and AWS Route 53
Code Block | ||
---|---|---|
| ||
AWS_REGION=us-east-1 AWS_ACCESS_KEY_ID=my_id AWS_SECRET_ACCESS_KEY=my_key lego --email="foo@bar.com" --domains="example.com" --dns="route53" run |
Panel | ||||||
---|---|---|---|---|---|---|
| ||||||
|