Difference between revisions of "SBN - Copying Certs"
Jump to navigation
Jump to search
| Line 1: | Line 1: | ||
| − | To copy certs for a machine from your proxy server (Replace '''Machine.Domain.TLD''' with the proper name for your machine...) (&, of course, '''user''' & ''' | + | To copy certs for a machine from your proxy server (Replace '''Machine.Domain.TLD''' with the proper name for your machine...) (&, of course, '''user''' & '''WebServer''' may need adjusting...) |
| + | |||
| + | In this example, | ||
| + | |||
| + | * '''Machine.Domain.TLD''' is the full name of the machine you're copying the certs to. | ||
| + | * '''WebServer''' is the name of your web/proxy server | ||
| + | |||
| + | <br /> | ||
#Install certbot on the machine you're putting the certs onto & create the <code>live</code> directory where the certs will live. | #Install certbot on the machine you're putting the certs onto & create the <code>live</code> directory where the certs will live. | ||
| + | #*<code>ssh Machine</code> | ||
#*<code>sudo apt in all certbot</code> | #*<code>sudo apt in all certbot</code> | ||
#*<code>sudo mkdir /etc/letsencrypt/live</code> | #*<code>sudo mkdir /etc/letsencrypt/live</code> | ||
Revision as of 02:24, 11 July 2020
To copy certs for a machine from your proxy server (Replace Machine.Domain.TLD with the proper name for your machine...) (&, of course, user & WebServer may need adjusting...)
In this example,
- Machine.Domain.TLD is the full name of the machine you're copying the certs to.
- WebServer is the name of your web/proxy server
- Install certbot on the machine you're putting the certs onto & create the
livedirectory where the certs will live.ssh Machinesudo apt in all certbotsudo mkdir /etc/letsencrypt/live
- Sign into your proxy server & make sure you can SSH into the target machine from there.
ssh webserverssh Machine- then exit when you've succeeded (this tells webserver how to get there...)
- Then you can use scp to copy the certs.
sudo scp -r /etc/letsencrypt/live/Machine.Domain.TLD user@Machine:~
- Then ssh back into the proxy server & move the certs into their proper location
sudo mv Machine.Domain.TLD /etc/letsencrypt/live/
