LecygneNoir
/
letsencrypt-haproxy
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17 Commits
1 Branch
232 KiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
letsencrypt-haproxy/README.md

41 lines
1.3 KiB
Raw Permalink Normal View History

initial commit
7 years ago
add some documentation in README
7 years ago
add mention of the blog article to be able to use scripts correclty (need haproxy configuration)
7 years ago
use certbot from packages as it is now available
6 years ago
add some documentation in README
7 years ago
use markdown syntax in README
7 years ago
add some documentation in README
7 years ago
use markdown syntax in README
7 years ago
add some documentation in README
7 years ago
use markdown syntax in README
7 years ago
add some documentation in README
7 years ago
use markdown syntax in README
7 years ago
add some documentation in README
7 years ago
add a script to create SAN certificates for postfix, and upload them to the mail server
6 years ago
 
  1. # letsencrypt-haproxy

  2. 

  3. Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it
  4. 

  5. **For this to work, you should have configured haproxy to accept let's encrypt connection**  
  6. More information [here](http://blog.victor-hery.com/index.php?article23/use-haproxy-with-let-s-encrypt)
  7. ([French version](http://blog.victor-hery.com/index.php?article22/utiliser-let-s-encrypt-avec-haproxy)
  8. 

  9. ## Prerequisites

  10. 

  11. You need to install certbot according to your distribution :
  12. 

  13. For debian : 
  14. ```
  15. apt-get install certbot
  16. ```
  17. 

  18. ## How to create certificate

  19. Create a certificate with let's encrypt, then concatenate fullchain.pem and privkey.pem, then store the certificate in haproxy given path.
  20. 

  21. Usage :  
  22. ```
  23. ./create-certificate domain.tld >> /var/log/create-certificate.log
  24. ```
  25. 

  26. ## How to renew certificates

  27. **Renew all certificate known by let's encrypt !**
  28. 

  29. Usage :  
  30. ```
  31. ./renew-certificate >> /var/log/renew-certificates.log
  32. ```
  33. 

  34. ##How to create postfix SAN certificate

  35. Create SAN (multi-domains) certificates for a postfix configuration
  36. 

  37. Edit postfix_pem_path  and mail_server and deploy ssh key accordingly.  
  38. I should write a blog article once I have time, meanwhile do not hesitate to ask questions on the repo
  39. Usage:
  40. ```
  41. ./create-cert-postfix domain1.tld domain2.tld domain3.tld
  42. ```