alarig/renew_cert
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
A shell script used to renew let’s encrypt certificates
7 commits 1 branch 0 tags 32 KiB
Shell 100%
Go to file
Alarig Le Lay b8f1c6dc5b
Using correct certbot options
2024-11-09 18:18:26 +01:00
LICENSE Initial commit 2018-04-09 14:19:08 +02:00
README.md Add nginx configuration 2018-04-09 14:37:26 +02:00
renew_cert.sh Using correct certbot options 2024-11-09 18:18:26 +01:00
renew_cert_dns.sh rfc2136: add support 2023-10-29 12:07:20 +01:00
rfc2136.dist.conf rfc2136: add support 2023-10-29 12:07:20 +01:00

README.md

renew_cert

A shell script used to renew lets encrypt certificates

CSR creation

For only one domain

	openssl req -nodes -newkey rsa:4096 -sha256 -keyout bulbizarre.swordarmor.fr.key -out bulbizarre.swordarmor.fr.csr

For multiple domains

	openssl req -new -sha512 -key ix.bzh.key -subj "/" -reqexts SAN -config < (cat /etc/ssl/openssl.cnf < (printf "[SAN]\nsubjectAltName=DNS:ix.bzh,DNS:www.ix.bzh")) > ix.bzh.csr

Example of nginx configuration for the HTTP challenge

	location /.well-known/acme-challenge/ {
		alias		/usr/local/www/le-challenges/.well-known/acme-challenge/;
		try_files	$uri $uri/ =404;
	}