On 4/22/23 09:27, Peter Boy wrote:
With apache you have the advantage that you don't need certbot at all, but apache does everything itself with the help of the md module. Configure as follows:
# Letsencrypt certificate management via Apache mod_md
# By default, automatically all alternative names get included.
MDomain MY_DOMAIN.TLD
MDContactEmail ME@MY_DOMAIN.TLD
MDCertificateAgreement accepted
<VirtualHost *:443>
ServerName MY_DOMAIN.TLD
ServerAlias www.MY_DOMAIN.TLD
ServerAlias demo.MY_DOMAIN.TLD
…
…
</VirtualHost>
After adding the above configuration restart apache. Wait some minutes and restart again. You should now see in the logs the certificates.
Apache cares about the 3-monthly renewing. You don’t need to do anything.
That is very nice! Unfortunately, that doesn't work for all my certs
because some are for the mail server and other applications, but
definitely something to keep in mind for some of them.
_______________________________________________
users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
