Difference between revisions of "Install LetsEncrypt SSL certificate"

Revision as of 19:49, 3 August 2017

• Fedora 26
• Apache 2.4

./letsencrypt-auto --apache -d stuartbarkley.com

Problem on Fedora 26 - python2-certbot-apache is broken so cannot be used but python3-certbot-apache works so install that.

wget http://dl.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-10.noarch.rpm

rpm -ivh epel-release-7-10.noarch.rpm

cd /usr/local/letsencrypt

dnf install certbot-apache

certbot certonly --manual  --dry-run -d stuartbarkley.com

certbot certonly --apache -d stuartbarkley.com

[root@fedora letsencrypt]# certbot certonly --apache -d stuartbarkley.com
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Obtaining a new certificate
Performing the following challenges:
tls-sni-01 challenge for stuartbarkley.com

We were unable to find a vhost with a ServerName or Address of stuartbarkley.com.
Which virtual host would you like to choose?
(note: conf files with multiple vhosts are not yet supported)
-------------------------------------------------------------------------------
1: ssl.conf                       |                       | HTTPS | Enabled
-------------------------------------------------------------------------------
Press 1 [enter] to confirm the selection (press 'c' to cancel): 

** Invalid input **
Press 1 [enter] to confirm the selection (press 'c' to cancel): 1
Waiting for verification...
Cleaning up challenges

IMPORTANT NOTES:
 - Congratulations! Your certificate and chain have been saved at
   /etc/letsencrypt/live/stuartbarkley.com/fullchain.pem. Your cert
   will expire on 2017-11-01. To obtain a new or tweaked version of
   this certificate in the future, simply run certbot again. To
   non-interactively renew *all* of your certificates, run "certbot
   renew"
 - If you like Certbot, please consider supporting our work by:

   Donating to ISRG / Let's Encrypt:   https://letsencrypt.org/donate
   Donating to EFF:                    https://eff.org/donate-le