36 | | Download: https://github.com/certbot/certbot/archive/refs/tags/v2.6.0/certbot-2.6.0.tar.gz\\ |
37 | | MD5 checksum: d999b46e7aa1d26d2d636a92d1462864\\ |
38 | | Dependencies: downloaded by pip\\ |
39 | | |
40 | | ==== Installation |
41 | | Install the bot by running the following command as ''root'' user: |
42 | | {{{ |
43 | | pip3 install certbot |
44 | | }}} |
45 | | Some additional packages might be downloaded while installation so a working internet connection is required. |
46 | | |
47 | | ==== Usage |
48 | | ... t.b.c. ... |
| 37 | To get https to work, first install certbot. The instructions are at |
| 38 | https://certbot.eff.org/lets-encrypt/otherpip-apache |
| 39 | |
| 40 | Note that augeas will also need to be installed. See below, |
| 41 | |
| 42 | The certbot looks for a certain configuration, even if 'Other Linux' is selected: |
| 43 | {{{ |
| 44 | ln -s apachectl /usr/sbin/apache2ctl |
| 45 | ln -s httpd /etc/apache2 |
| 46 | |
| 47 | mkdir -p /etc/httpd/sites-enabled |
| 48 | cd /etc/httpd/sites-enabled |
| 49 | ln -s ../vhosts.d/<site.domain.topleveldomain>.conf |
| 50 | }}} |
| 51 | |
| 52 | In /etc/httpd/httpd.conf ensure 'LoadModule rewrite_module...' is not commented. |
| 53 | |
| 54 | Now install augeas (http://download.augeas.net/http://download.augeas.net/) |
| 55 | |
| 56 | Run as root: |
| 57 | {{{ |
| 58 | certbot --apache --must-staple --redirect --hsts --uir --staple-ocsp \ |
| 59 | -d <site.domain.topleveldomain> |
| 60 | }}} |
| 61 | |
| 62 | This will update vhosts.d/<site.domain.topleveldomain>.conf and add |
| 63 | <site.domain.topleveldomain>-le-ssl.conf |
| 64 | |
| 65 | Restart apache |
| 66 | |