This shows you the differences between two versions of the page.
Next revision | Previous revisionNext revisionBoth sides next revision | ||
deb11:certbot [2021/12/24 13:16] – created Bernard Condrau | deb11:certbot [2021/12/24 14:32] – Bernard Condrau | ||
---|---|---|---|
Line 1: | Line 1: | ||
====== Certbot ====== | ====== Certbot ====== | ||
+ | The following walk through works on Debian 9, 10, and 11. | ||
+ | |||
+ | ===== Installation ===== | ||
- Install snapd< | - Install snapd< | ||
- | sudo apt install snapd</ | + | sudo apt install snapd |
+ | sudo snap install core | ||
+ | sudo snap refresh core</ | ||
+ | - Remove previously installed certbot packages< | ||
+ | sudo rm / | ||
+ | - Remove certbot renewal entry in crontab | ||
+ | - Install certbot through snap< | ||
+ | sudo ln -s / | ||
+ | - Test automatic renewal< | ||
+ | - Check that the certbot renewal service has been set up< | ||
+ | |||
+ | ===== Maintenance ===== | ||
+ | * If you have existing SSL VirtualHost definitions you need to copy a certificate from another site or webserver to / | ||
+ | * Run certbot and register sites:< | ||
+ | * Check certificates:< | ||
+ | * Add domains to certificate:< | ||
+ | certbot certonly --webroot --agree-tos -w / | ||
+ | * Revoke and optionally delete certificate:< | ||
+ | * Delete certificate:< | ||
+ | * Delete listed domains:< | ||
+ | * All sites must be accessible through port 80 when renewing certificates. | ||
+ | |||
+ | ==== Links ==== | ||
+ | * [[https:// | ||
+ | * [[https:// |