On 4/22/23 09:27, Peter Boy wrote:
With apache you have the advantage that you don't need certbot at all, but apache does everything itself with the help of the md module. Configure as follows:# Letsencrypt certificate management via Apache mod_md # By default, automatically all alternative names get included. MDomain MY_DOMAIN.TLD MDContactEmail ME@MY_DOMAIN.TLD MDCertificateAgreement accepted <VirtualHost *:443> ServerName MY_DOMAIN.TLD ServerAlias www.MY_DOMAIN.TLD ServerAlias demo.MY_DOMAIN.TLD … … </VirtualHost> After adding the above configuration restart apache. Wait some minutes and restart again. You should now see in the logs the certificates. Apache cares about the 3-monthly renewing. You don’t need to do anything.
That is very nice! Unfortunately, that doesn't work for all my certs because some are for the mail server and other applications, but definitely something to keep in mind for some of them.
_______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
