commit
73e50fce28
20
README.rst
20
README.rst
|
@ -87,12 +87,14 @@ To acquire a single certificate for both ``example.com`` and
|
||||||
|
|
||||||
.. code-block:: bash
|
.. code-block:: bash
|
||||||
|
|
||||||
certbot certonly \\
|
certbot certonly \
|
||||||
--authenticator certbot-dns-netcup:dns-netcup \\
|
--authenticator certbot-dns-ispconfig:dns-ispconfig \
|
||||||
--certbot-dns-netcup:dns-netcup-credentials ~/.secrets/certbot/netcup.ini \\
|
--certbot-dns-ispconfig:dns-ispconfig-credentials /etc/letsencrypt/.secrets/domain.tld.ini \
|
||||||
--certbot-dns-netcup:dns-netcup-propagation-seconds 900 \\
|
--certbot-dns-ispconfig:dns-ispconfig-propagation-seconds 900 \
|
||||||
--server https://acme-v02.api.letsencrypt.org/directory \
|
--server https://acme-v02.api.letsencrypt.org/directory \
|
||||||
-d 'example.com' \\
|
--agree-tos \
|
||||||
|
--rsa-key-size 4096 \
|
||||||
|
-d 'example.com' \
|
||||||
-d '*.example.com'
|
-d '*.example.com'
|
||||||
|
|
||||||
|
|
||||||
|
@ -121,12 +123,12 @@ Once that's finished, the application can be run as follows::
|
||||||
--authenticator certbot-dns-ispconfig:dns-ispconfig \
|
--authenticator certbot-dns-ispconfig:dns-ispconfig \
|
||||||
--certbot-dns-ispconfig:dns-ispconfig-propagation-seconds 900 \
|
--certbot-dns-ispconfig:dns-ispconfig-propagation-seconds 900 \
|
||||||
--certbot-dns-ispconfig:dns-ispconfig-credentials \
|
--certbot-dns-ispconfig:dns-ispconfig-credentials \
|
||||||
/var/lib/letsencrypt/ispconfig_credentials.ini \
|
/etc/letsencrypt/.secrets/domain.tld.ini \
|
||||||
--no-self-upgrade \
|
--no-self-upgrade \
|
||||||
--keep-until-expiring --non-interactive --expand \
|
--keep-until-expiring --non-interactive --expand \
|
||||||
--server https://acme-v02.api.letsencrypt.org/directory \
|
--server https://acme-v02.api.letsencrypt.org/directory \
|
||||||
-d example.com -d '*.example.com'
|
-d example.com -d '*.example.com'
|
||||||
|
|
||||||
You may want to change the volumes ``/var/lib/letsencrypt`` and
|
It is suggested to secure the folder as follows::
|
||||||
``/etc/letsencrypt`` to local directories where the certificates and
|
chown root:root /etc/letsencrypt/.secrets
|
||||||
configuration should be stored.
|
chmod 600 /etc/letsencrypt/.secrets
|
||||||
|
|
Loading…
Reference in New Issue