 |
|
|
|
centos7 Certbotを使ってSSL証明書を発行 |
Certbot(Let's encrypt) install
yum install -y epel-release
yum install -y certbot python-certbot-apache
certbot certonly --standalone -d www3.kensanet.com -m jazzbass.s.k@gmail.com
cd /etc/letsencrypt/archive/
drwxr-xr-x 2 root root 4096 12月 8 03:47 kensa.kensanet.com
drwxr-xr-x 2 root root 4096 12月 7 17:14 www3.kensanet.com
cd www3.kensanet.com
chmod 644 /etc/letsencrypt/archive/www3.kensanet.com/privkey1.pem
-rw-r--r-- 1 root root 1850 12月 8 03:47 cert1.pem
-rw-r--r-- 1 root root 3749 12月 8 03:47 chain1.pem
-rw-r--r-- 1 root root 5599 12月 8 03:47 fullchain1.pem
-rw-r--r-- 1 root root 1704 12月 8 03:47 privkey1.pem
vi /etc/httpd/conf.d/ssl.conf
SSLCertificateFile /etc/letsencrypt/archive/www3.kensanet.com/cert1.pem
SSLCertificateKeyFile /etc/letsencrypt/archive/www3.kensanet.com/privkey1.pem
SSLCertificateChainFile /etc/letsencrypt/archive/www3.kensanet.com/chain1.pem
certbot renew && systemctl restart httpdを実行
<VirtualHost *:443>
DocumentRoot "/var/www/kensa"
ServerName kensa.kensanet.com:443
ErrorLog logs/kensa.kensanet.com_secure-error_log
CustomLog logs/kensa.kensanet.com_secure-access_log combined
SSLCertificateFile /etc/letsencrypt/archive/kensa.kensanet.com/cert5.pem
SSLCertificateKeyFile /etc/letsencrypt/archive/kensa.kensanet.com/privkey5.pem
SSLCertificateChainFile /etc/letsencrypt/archive/kensa.kensanet.com/chain5.pem
</VirtualHost>
|
|
| 
