Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
victor héry 4ac148cb58 need to restart dovecot in addition to postfix to manage imap/pop :-) 1 year ago
LICENSE initial commit 3 years ago
README.md add a script to create SAN certificates for postfix, and upload them to the mail server 1 year ago
create-cert-postfix need to restart dovecot in addition to postfix to manage imap/pop :-) 1 year ago
create-certificat patch debian path for certbot 1 year ago
renew-certificates use systemctl instead of service, as systemctl is now massively used.. 1 year ago

README.md

letsencrypt-haproxy

Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it

For this to work, you should have configured haproxy to accept let’s encrypt connection
More information here (French version

Prerequisites

You need to install certbot according to your distribution :

For debian :

apt-get install certbot

How to create certificate

Create a certificate with let’s encrypt, then concatenate fullchain.pem and privkey.pem, then store the certificate in haproxy given path.

Usage :

./create-certificate domain.tld >> /var/log/create-certificate.log

How to renew certificates

Renew all certificate known by let’s encrypt !

Usage :

./renew-certificate >> /var/log/renew-certificates.log

How to create postfix SAN certificate

Create SAN (multi-domains) certificates for a postfix configuration

Edit postfix_pem_path and mail_server and deploy ssh key accordingly.
I should write a blog article once I have time, meanwhile do not hesitate to ask questions on the repo Usage:

./create-cert-postfix domain1.tld domain2.tld domain3.tld