Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it

victor héry 4ac148cb58 need to restart dovecot in addition to postfix to manage imap/pop :-)		5 years ago
LICENSE	initial commit	6 years ago
README.md	add a script to create SAN certificates for postfix, and upload them to the mail server	5 years ago
create-cert-postfix	need to restart dovecot in addition to postfix to manage imap/pop :-)	5 years ago
create-certificat	patch debian path for certbot	5 years ago
renew-certificates	use systemctl instead of service, as systemctl is now massively used..	5 years ago

README.md

letsencrypt-haproxy

Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it

For this to work, you should have configured haproxy to accept let's encrypt connection
More information here (French version

Prerequisites

You need to install certbot according to your distribution :

For debian :

apt-get install certbot

How to create certificate

Create a certificate with let's encrypt, then concatenate fullchain.pem and privkey.pem, then store the certificate in haproxy given path.

Usage :

./create-certificate domain.tld >> /var/log/create-certificate.log

How to renew certificates

Renew all certificate known by let's encrypt !

Usage :

./renew-certificate >> /var/log/renew-certificates.log

##How to create postfix SAN certificate Create SAN (multi-domains) certificates for a postfix configuration

Edit postfix_pem_path and mail_server and deploy ssh key accordingly.
I should write a blog article once I have time, meanwhile do not hesitate to ask questions on the repo Usage:

./create-cert-postfix domain1.tld domain2.tld domain3.tld