meta data for this page
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| sw:certbot [2020/07/02 18:51] – niziak | sw:certbot [2020/07/10 13:11] (current) – niziak | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== certbot ====== | + | ====== certbot |
| - | letsencrypt | + | |
| Debian Buster has old '' | Debian Buster has old '' | ||
| Line 10: | Line 10: | ||
| ===== obtain wildcard cert ===== | ===== obtain wildcard cert ===== | ||
| - | It is only possible using DNS authenticator. | ||
| <code bash> | <code bash> | ||
| - | certbot --certonly --manual -d ' | + | # First obtain normal domain certificate |
| + | certbot -d ' | ||
| + | |||
| + | # Then obtain again with wildcard. It will ask to Expand existing cert. | ||
| + | certbot | ||
| + | </ | ||
| + | |||
| + | ==== using manual and DNS ==== | ||
| + | <code bash> | ||
| + | certbot | ||
| </ | </ | ||
| Line 20: | Line 28: | ||
| _acme-challenge.example.com. 300 IN TXT " | _acme-challenge.example.com. 300 IN TXT " | ||
| </ | </ | ||
| + | Ensure record is propagated: | ||
| + | <code bash> | ||
| + | $ host -t TXT _acme-challenge.example.com | ||
| + | _acme-challenge.example.com descriptive text " | ||
| + | </ | ||
| + | |||
| ====== Issues ====== | ====== Issues ====== | ||