alarig
/
renew_cert
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
A shell script used to renew let’s encrypt certificates
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
52 KiB
 
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Alarig Le Lay 204af35901
Add nginx configuration 		4 years ago
LICENSE Initial commit 4 years ago
README.md Add nginx configuration 4 years ago
renew_cert.sh Current version 4 years ago

README.md

renew_cert

A shell script used to renew let’s encrypt certificates

CSR creation

For only one domain

	openssl req -nodes -newkey rsa:4096 -sha256 -keyout bulbizarre.swordarmor.fr.key -out bulbizarre.swordarmor.fr.csr

For multiple domains

	openssl req -new -sha512 -key ix.bzh.key -subj "/" -reqexts SAN -config < (cat /etc/ssl/openssl.cnf < (printf "[SAN]\nsubjectAltName=DNS:ix.bzh,DNS:www.ix.bzh")) > ix.bzh.csr

Example of nginx configuration for the HTTP challenge

	location /.well-known/acme-challenge/ {
		alias		/usr/local/www/le-challenges/.well-known/acme-challenge/;
		try_files	$uri $uri/ =404;
	}