Sagit

申请Let's Encrypt通配符HTTPS证书
环境centos7安装Certbotwget https://dl.eff.org/certbot-auto ch...
扫描右侧二维码阅读全文
16
2018/08

申请Let's Encrypt通配符HTTPS证书

环境

centos7

安装Certbot

wget https://dl.eff.org/certbot-auto
chmod a+x certbot-auto
mv certbot-auto /usr/local/bin/

申请证书

 certbot-auto certonly -d '*.yourdomain.com' --manual --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory

注:yourdomain.com替换为你自己的域名

Enter email address (used for urgent renewal and security notices) (Enter 'c' to
cancel): youremail@qq.com
(A)gree/(C)ancel: A
(Y)es/(N)o: N
Are you OK with your IP being logged?
(Y)es/(N)o: N
Please deploy a DNS TXT record under the name
_acme-challenge.yourdomain.com with the following value:
u5iIS3JKCUpFEjL0_F9F0LE12345678UgDcOISEtx8o
Before continuing, verify the record is deployed.
Press Enter to Continue
  • 添加DNS记录
    记录类型:TXT

主机记录:_acme-challenge.yourdomain.com,具体参考上一步
记录值:u5iIS3JKCUpFEjL0_F9F0LE12345678UgDcOISEtx8o,具体参考上一步
添加之后,不要心急着按回车

  • 验证DNS记录

    dig -t txt _acme-challenge.yourdomain.com

要续期的话,执行 certbot-auto renew 就可以了

Last modification:August 25th, 2018 at 03:47 pm
If you think my article is useful to you, please feel free to appreciate

Leave a Comment