Let's Encrypt: Difference between revisions

m
Revoking and/or deleting certificates
→‎Adding multiple domain names for a certificate: Getting certificates for a separate server using manual mode
m Revoking and/or deleting certificates
Line 6: Line 6:
This one is for Ubuntu 14.04 (trusty) and pursues the easier-to-use option. I'm assuming that you have a sudo access, although that isn't an absolute requirement.
This one is for Ubuntu 14.04 (trusty) and pursues the easier-to-use option. I'm assuming that you have a sudo access, although that isn't an absolute requirement.


== Installation ==
= Installation =
''Last tested on Ubuntu 14.04 LTS (trusty)''
''Last tested on Ubuntu 14.04 LTS (trusty)''


Line 35: Line 35:
<code>certbot-auto</code> creates a folder in <span class="path">/etc/letsencrypt/</span> as a default.
<code>certbot-auto</code> creates a folder in <span class="path">/etc/letsencrypt/</span> as a default.


== Adding more domains ==
= Adding more domains =


After the initial installation, if you need to add more domains you can do it directly from the CLI.
After the initial installation, if you need to add more domains you can do it directly from the CLI.
Line 43: Line 43:
</syntaxhighlight>
</syntaxhighlight>


== Configuring to auto-renew certificate ==
= Configuring to auto-renew certificate =


<code>certbot-auto</code> can also auto-renew certificates by adding a command as a cronjob.
<code>certbot-auto</code> can also auto-renew certificates by adding a command as a cronjob.
Line 57: Line 57:
</syntaxhighlight>
</syntaxhighlight>


== Adding multiple domain names for a certificate ==
= Adding multiple domain names for a certificate =


You can use one certificate for multiple domains. The certificate is generated, but you need to install it yourself.
You can use one certificate for multiple domains. The certificate is generated, but you need to install it yourself.
Line 77: Line 77:
</source>
</source>


== Getting certificates for a separate server using manual mode ==
= Getting certificates for a separate server using manual mode =


This will start an interactively, manual mode.
This will start an interactively, manual mode.
Line 83: Line 83:
<source lang="bash" highlight="1">
<source lang="bash" highlight="1">
$ certbot-auto certonly --manual -d test.com -d www.test.com
$ certbot-auto certonly --manual -d test.com -d www.test.com
</source>
= Revoking and/or deleting certificates =
The optional <span class="package">reason</span> flag can have the following values:
<span class="param">unspecified</span> (default), <span class="param">keycompromise</span>, <span class="param">affiliationchanged</span>, <span class="param">superseded</span>, and <span class="param">cessationofoperation</span>.
<source lang="bash">
$ certbot-auto revoke --cert-path /etc/letsencrypt/live/bamboo.domain.com/cert.pem --reason cessationofoperation
</source>
</source>