This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
letsencrypt [2018/09/25 14:36] k2patel [Apache Configuration] |
letsencrypt [2020/08/10 02:35] (current) |
||
---|---|---|---|
Line 6: | Line 6: | ||
But there is catch, You have to renew your certificated Often.\\ | But there is catch, You have to renew your certificated Often.\\ | ||
Since they provided tool to do so, i don't think there is problem at all.\\ | Since they provided tool to do so, i don't think there is problem at all.\\ | ||
+ | |||
+ | One thing, i've noticed that on AWS, some how authentication using the webroot method fails.\\ | ||
+ | So i had to use http method, which works perfectly fine.\\ | ||
+ | But, renewal works without any issue using webroot.\\ | ||
First install command line API tool. | First install command line API tool. | ||
Line 56: | Line 60: | ||
</code> | </code> | ||
+ | |||
+ | SSL Configuration | ||
+ | <code conf ssl.conf> | ||
+ | ssl on; | ||
+ | ssl_certificate_key /etc/letsencrypt/live/fqdn.testdomain.com/privkey.pem; | ||
+ | ssl_certificate /etc/letsencrypt/live/fqdn.testdomain.com/fullchain.pem; | ||
+ | ssl_trusted_certificate /etc/letsencrypt/live/fqdn.testdomain.com/fullchain.pem; | ||
+ | </code> | ||
==== Apache Configuration ==== | ==== Apache Configuration ==== | ||
So each domain only need to redirect to HTTPS if URL requested is from acme. | So each domain only need to redirect to HTTPS if URL requested is from acme. |