Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it

victor héry 4ac148cb58 need to restart dovecot in addition to postfix to manage imap/pop :-)		6 年之前
LICENSE	initial commit	7 年之前
README.md	add a script to create SAN certificates for postfix, and upload them to the mail server	6 年之前
create-cert-postfix	need to restart dovecot in addition to postfix to manage imap/pop :-)	6 年之前
create-certificat	patch debian path for certbot	6 年之前
renew-certificates	use systemctl instead of service, as systemctl is now massively used..	6 年之前

README.md

letsencrypt-haproxy

Some scripts to create and renew all your certificates, and concatenate fullchain and privkey so haproxy is able to use it

For this to work, you should have configured haproxy to accept let's encrypt connection
More information here (French version

Prerequisites

You need to install certbot according to your distribution :

For debian :

apt-get install certbot

How to create certificate

Create a certificate with let's encrypt, then concatenate fullchain.pem and privkey.pem, then store the certificate in haproxy given path.

Usage :

./create-certificate domain.tld >> /var/log/create-certificate.log

How to renew certificates

Renew all certificate known by let's encrypt !

Usage :

./renew-certificate >> /var/log/renew-certificates.log

##How to create postfix SAN certificate Create SAN (multi-domains) certificates for a postfix configuration

Edit postfix_pem_path and mail_server and deploy ssh key accordingly.
I should write a blog article once I have time, meanwhile do not hesitate to ask questions on the repo Usage:

./create-cert-postfix domain1.tld domain2.tld domain3.tld