let_s_encrypt
Différences
Ci-dessous, les différences entre deux révisions de la page.
Les deux révisions précédentesRévision précédenteProchaine révision | Révision précédente | ||
let_s_encrypt [2018/01/10 01:57] – simon | let_s_encrypt [Date inconnue] (Version actuelle) – supprimée - modification externe (Date inconnue) 127.0.0.1 | ||
---|---|---|---|
Ligne 1: | Ligne 1: | ||
- | ====== Let's Encrypt ====== | ||
- | [[https:// | ||
- | ===== Configuration des certificats Let's Encrypt ===== | ||
- | J'ai configuré les certificats pour plusieurs noms de domaines et voici la procédure suivie, pour le domaine fictif " | ||
- | |||
- | On commence par activer les backports (sous Stretch) afin de bénéficier de la version de [[certbot]] la plus récente. | ||
- | |||
- | <code bash> | ||
- | # vim / | ||
- | # | ||
- | # Backports repository | ||
- | deb http:// | ||
- | </ | ||
- | |||
- | Dans mon cas, après installation sans les backports, certbot était en version 0.10 alors qu' | ||
- | |||
- | <code bash> | ||
- | # apt-get -t stretch-backports install python-certbot-apache | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | # certbot --version | ||
- | certbot 0.19.0 | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | # certbot --apache | ||
- | Saving debug log to / | ||
- | |||
- | Which names would you like to activate HTTPS for? | ||
- | ------------------------------------------------------------------------------- | ||
- | 1: plouf.com | ||
- | 2: sous.plouf.com | ||
- | 3: piscine.plouf.com | ||
- | ------------------------------------------------------------------------------- | ||
- | Select the appropriate numbers separated by commas and/or spaces, or leave input | ||
- | blank to select all options shown (Enter ' | ||
- | Enter email address (used for urgent renewal and security notices) (Enter ' | ||
- | cancel): | ||
- | |||
- | ------------------------------------------------------------------------------- | ||
- | Please read the Terms of Service at | ||
- | https:// | ||
- | agree in order to register with the ACME server at | ||
- | https:// | ||
- | ------------------------------------------------------------------------------- | ||
- | (A)gree/ | ||
- | Obtaining a new certificate | ||
- | Performing the following challenges: | ||
- | tls-sni-01 challenge for plouf.com | ||
- | tls-sni-01 challenge for sous.plouf.com | ||
- | tls-sni-01 challenge for piscine.plouf.com | ||
- | Enabled Apache socache_shmcb module | ||
- | Enabled Apache ssl module | ||
- | Waiting for verification... | ||
- | Cleaning up challenges | ||
- | Generating key (2048 bits): / | ||
- | Creating CSR: / | ||
- | Created an SSL vhost at / | ||
- | Enabled Apache socache_shmcb module | ||
- | Enabled Apache ssl module | ||
- | Deploying Certificate to VirtualHost / | ||
- | Enabling available site: / | ||
- | An unexpected error occurred: | ||
- | StopIteration | ||
- | Please see the logfiles in / | ||
- | |||
- | IMPORTANT NOTES: | ||
- | - Unable to install the certificate | ||
- | - Congratulations! Your certificate and chain have been saved at | ||
- | / | ||
- | | ||
- | | ||
- | " | ||
- | | ||
- | - If you lose your account credentials, | ||
- | | ||
- | - Your account credentials have been saved in your Certbot | ||
- | | ||
- | | ||
- | also contain certificates and private keys obtained by Certbot so | ||
- | | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | <code bash> | ||
- | </ | ||
- | |||
- | ===== Sources ===== | ||
- | * [[https:// |