Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
userguide:let_s_encrypt_for_internal_servers [2018/06/26 01:20]
Dan Brown [Issue the certificate]
userguide:let_s_encrypt_for_internal_servers [2019/03/13 18:28] (current)
Dan Brown [Issue the certificate] Add discussion of --test
Line 55: Line 55:
   --reloadcmd "/​sbin/​e-smith/​signal-event certificate-update"​   --reloadcmd "/​sbin/​e-smith/​signal-event certificate-update"​
 </​file>​ </​file>​
 +dn
 This command will issue your certificate,​ specify the paths for the cert, key, and chain files to be copied to, and indicate that signal-event certificate-update is to be run whenever this cert renews. You can include as many FQDNs in the cert as you want by just adding more -d fqdn parameters. As above, if you aren’t using Cloudflare, change dns_cf to the appropriate API for your DNS host, as described at the documentation linked above. This command will issue your certificate,​ specify the paths for the cert, key, and chain files to be copied to, and indicate that signal-event certificate-update is to be run whenever this cert renews. You can include as many FQDNs in the cert as you want by just adding more -d fqdn parameters. As above, if you aren’t using Cloudflare, change dns_cf to the appropriate API for your DNS host, as described at the documentation linked above.
  
 +To avoid exceeding the [[https://​letsencrypt.org/​docs/​rate-limits/​|Let'​s Encrypt rate limits]], you should use the ''​--test''​ flag until you're sure everything is working properly. ​ The command above would then look like:
 +<​file>​
 + ​acme.sh --issue --test --dns ...
 +</​file>​
 That’s it! Your certificate is issued, and will renew automatically every 60 days. That’s it! Your certificate is issued, and will renew automatically every 60 days.
  
  
 {{tag>​userguide ht_v7 ht_application}} {{tag>​userguide ht_v7 ht_application}}