申请 Let's Encrypt 的 SSL 证书

标签

数学/密码学/证书/TLS/SSL

数学/密码学/证书/TLS/HTTPS

数学/密码学/证书/TLS/域名证书

数学/密码学/证书/LetsEncrypt

命令行/openssl

操作系统/Debian

操作系统/CentOS

操作系统/Debian/Debian-11

操作系统/CentOS/CentOS-8

操作系统/CentOS/CentOS-7

字数

231 字

阅读时间

2 分钟

CentOS 7/8

sudo dnf install certbot python3-certbot-dns-cloudflare

mkdir -p .secrets/certbot && echo -e 'dns_cloudflare_email = <Cloudflare 电子邮箱>\ndns_cloudflare_api_key = <API Key>' > .secrets/certbot/cloudflare.ini

chmod 700 .secrets
chmod 600 .secrets/certbot
chmod 600 .secrets/certbot/cloudflare.ini

sudo certbot certonly --cert-name <证书文件名称> --dns-cloudflare --dns-cloudflare-credentials ~/.secrets/certbot/cloudflare.ini --server https://acme-v02.api.letsencrypt.org/directory -d "<域名>"

Debian 11

sudo apt install certbot

sudo apt -y install python3-certbot-dns-cloudflare

使用 Global Key

mkdir -p .secrets/certbot && echo -e 'dns_cloudflare_email = \ndns_cloudflare_api_key = ' > .secrets/certbot/cloudflare.ini

vim .secrets/certbot/cloudflare.ini

dns_cloudflare_email = <Cloudflare 电子邮箱>
dns_cloudflare_api_key = <API Key>

chmod 700 .secrets
chmod 600 .secrets/certbot
chmod 600 .secrets/certbot/cloudflare.ini

sudo certbot certonly --cert-name <证书文件名称> --dns-cloudflare --dns-cloudflare-credentials ~/.secrets/certbot/cloudflare.ini --server https://acme-v02.api.letsencrypt.org/directory -d "<域名>"

使用限制的 API 令牌

API 令牌需要 DNS 编辑权限

sudo apt install python3-pip

sudo pip3 install cloudflare

mkdir -p .secrets/certbot && echo -e 'dns_cloudflare_api_token = ' > .secrets/certbot/cloudflare.ini

vim .secrets/certbot/cloudflare.ini

dns_cloudflare_api_token = <API Token>

chmod 700 .secrets
chmod 700 .secrets/certbot
chmod 600 .secrets/certbot/cloudflare.ini

sudo certbot certonly --cert-name <证书文件名称> --dns-cloudflare --dns-cloudflare-credentials ~/.secrets/certbot/cloudflare.ini --server https://acme-v02.api.letsencrypt.org/directory -d "<域名>"

延伸阅读

https://certbot.eff.org/instructions?ws=nginx&os=centosrhel8https://snapcraft.io/docs/installing-snap-on-centos

贡献者

絢香猫

页面历史

最后编辑于 4 个月前

查看完整历史

f2594c9-docs: 迁移和合并标签

9051279-docs: 迁移路径

9b86c6d-chore: 修复 markdown lint

6062d37-docs: 添加文档

e003061-chore: 发布前整理文档

d7af574-猫猫更新了知识库: 2022-09-07 17:12:56

5b2de35-猫猫更新了知识库: 2022-07-24 16:32:35

c266b75-猫猫更新了知识库: 2022-05-28 13:41:36

de00fe8-猫猫更新了知识库: 2022-03-07 11:33:54

9394831-猫猫更新了知识库: 2022-01-17 11:47:59

4cf27f8-猫猫更新了知识库: 2021-12-31 18:58:04

00098b3-猫猫更新了知识库 2021-12-16 11:56:02

5964ee8-vault backup: 2021-10-29 11:42:35