Hope this helps others to get Letsencrypt working on Beta. I used this bug report to get the clues I needed:
https://bugs.koozali.org/show_bug.cgi?id=10920Once Beta is installed and updated, use smanager's Letsencrypt Certificate panel to set the Config:
Service Status Enabled
Hookscript Status Enabled
Hostoverride Status Disabled
Accept Terms Status Yes
API Status 2
Keysize Status 2048
Configure mode Status NONE
Email postmaster@domain.com
When you modify modSSL with the cert locations as shown below, it causes the changes to be automatically written to /etc/httpd/conf/httpd.conf whenever dehydrated is run. This allows httpd to find and use the certs. Im using the suggested path to store the certs.
Im only enabling one hostname to receive a cert. Be sure to point your firewall to the host, and that the hostname exists in your external and internal DNS records...
Enter the following commands in a terminal window:
mkdir -p /var/www/html/.well-known/acme-challenge
chown www:www -R /var/www/html/.well-known
db hosts show
db hosts setprop tester.domain.com letsencryptSSLcert enabled
config show modSSL
config setprop modSSL CertificateChainFile "/etc/dehydrated/certs/tester.domain.com/cert.pem"
config setprop modSSL key "/etc/dehydrated/certs/tester.domain.com/privkey.pem"
config setprop modSSL crt "/etc/dehydrated/certs/tester.domain.com/cert.pem"
nano /etc/e-smith/templates/etc/dehydrated/config/45Algorithm
(uncomment the last line to enable RSA)
KEY_ALGO=rsa
signal-event letsencrypt-config
dehydrated -c
0 Replies
22 Views