|
|
|
@ -12,6 +12,7 @@ and edit to taste. |
|
|
|
|
## Dependencies |
|
|
|
|
|
|
|
|
|
``` |
|
|
|
|
sudo apt install certbot |
|
|
|
|
pip3 install crossplane |
|
|
|
|
``` |
|
|
|
|
|
|
|
|
@ -76,7 +77,7 @@ Be sure to substitute `$PRIMARY_DOMAIN` for the primary domain in your |
|
|
|
|
`certbot_config.py` file, as this is the location Certbot will place your |
|
|
|
|
certificates in. |
|
|
|
|
|
|
|
|
|
The SSL version of your Nginx host configuration file would look roughly like this: |
|
|
|
|
The SSL version of your Nginx host configuration files would look roughly like this: |
|
|
|
|
|
|
|
|
|
``` |
|
|
|
|
server { |
|
|
|
@ -86,7 +87,7 @@ server { |
|
|
|
|
include ssl.conf; |
|
|
|
|
|
|
|
|
|
location / { |
|
|
|
|
root /usr/share/nginx/thj.no; |
|
|
|
|
root /usr/share/nginx/host.tld; |
|
|
|
|
index index.html index.htm; |
|
|
|
|
} |
|
|
|
|
} |
|
|
|
@ -95,10 +96,9 @@ server { |
|
|
|
|
With these files in place, you can reload Nginx and run `./certbot.py`. |
|
|
|
|
Certificate configuration should then commence in the usual fashion. |
|
|
|
|
|
|
|
|
|
Once completed, rename all your SSL dotfiles to regular dotfiles and |
|
|
|
|
reload Nginx again. You should now have a working SSL configuration |
|
|
|
|
for all your domains. |
|
|
|
|
Once completed, undotify all your SSL dotfiles and reload Nginx again. |
|
|
|
|
You should now have a working SSL configuration for all your domains. |
|
|
|
|
|
|
|
|
|
To add new domains, simply follow the same procedure as above, while |
|
|
|
|
leaving the other configuration files in place, and `certbot` will |
|
|
|
|
leaving the other configuration files in place, and `certbot.py` will |
|
|
|
|
generate a new certificate containing the new domains. |
|
|
|
|