sudo mv /opt/bitnami/apache2/conf/bitnami/certs/server.crt /opt/bitnami/apache2/conf/bitnami/certs/ In the following example commands, replace the DOMAIN placeholder with your domain name. Link the SSL certificate and certificate key file to the locations that are currently being read by your web server: opt/bitnami/letsencrypt/certificates/DOMAIN.keyĦ. opt/bitnami/letsencrypt/certificates/DOMAIN.crt The SSL certificate and private key generate in the following locations: Lightsail name servers sudo /opt/bitnami/letsencrypt/lego -email="EMAIL-ADDRESS" -domains="DOMAIN" -domains="*.DOMAIN" -dns lightsail -path="/opt/bitnami/letsencrypt" runĪfter the SSL certificate generates successfully, you receive the message "Server responded with a certificate". Route 53 name servers sudo /opt/bitnami/letsencrypt/lego -email="EMAIL-ADDRESS" -domains="DOMAIN" -domains="*.DOMAIN" -dns route53 -path="/opt/bitnami/letsencrypt" run Replace EMAIL-ADDRESS with the email address where you want to receive further updates about your certificate. Create a Let's Encrypt certificate in the server. Sudo mv lego /opt/bitnami/letsencrypt/legoĥ. If your Bitnami instance doesn't include the directory /opt/bitnami/letsencrypt/, then manually install the Lego client using the following commands: cd /tmpĬurl -Ls | grep browser_download_url | grep linux_amd64 | cut -d '"' -f 4 | wget -i -O Replace a aws_secret_access_key with the Secret Access Key created in step 1. In the following command, replace aws_access_key_id with the Access Key ID created in step 1. Then save the file by pressing ctrl+x, then press y and then ENTER. Run the following commands in the instance to open the file /root/.aws/credentials file in nano editor. For the minimum permissions required to be attached to the IAM user for Lego to complete the DNS challenge, see Policy in the Lego documentation.Ģ. Create an AWS Identity and Access Management (IAM) user with programmatic access. Note: In the following example, the DNS provider is Amazon Route 53 or Amazon Lightsail.ġ. The domain must be using one of the DNS providers listed in DNS Providers in the Lego documentation.You must manually complete additional steps, such as configuring the webserver to use the certificate and setting up HTTPS redirection. The following steps cover installing the certificate in the server.This tool supports the creation of wildcard SSL certificates, while bncert-tool does not. To identify your Bitnami installation type, run the command following command: test ! -f "/opt/bitnami/common/bin/openssl" & echo "Approach A: Using system packages." || echo "Approach B: Self-contained installation." Method 1Īlong with bncert-tool, Bitnami stack provides the Lego tool. Note: The file paths mentioned in this article might change depending on whether your Bitnami stack uses native Linux system packages (Approach A), or if it is a self-contained installation (Approach B). Method 2: Use the Certbot package if your domain isn't using any of the listed DNS providers. Method 1: Use the Lego tool provided by Bitnami If your domain uses one of the listed DNS providers. Then, select the appropriate method to use: To determine which method to use, verify if your DNS provider is listed in DNS Providers in the Lego documentation. The steps used to install a wildcard Let's Encrypt SSL certificate on a Bitnami hosted Lightsail instance depend on which DNS provider your domain uses. To install a wildcard Let's Encrypt certificate in a Lightsail instance without a Bitnami stack, see How do I install a wildcard Let's Encrypt SSL certificate in Amazon Lightsail? This includes instances such as Amazon Linux 2 and Ubuntu. Wildcard Let's Encrypt certificates (for example, *.) To install a standard Let's Encrypt SSL certificate in a Lightsail instance with a Bitnami stack, see How do I install a Let's Encrypt SSL certificate in a Bitnami stack hosted on Amazon Lightsail? This includes instances such as WordPress, LAMP, and Magento. To install a standard Let's Encrypt SSL certificate in a Lightsail instance without a Bitnami stack, see How do I install a standard Let's Encrypt SSL certificate in a Lightsail instance? This includes instances such as Amazon Linux 2 and Ubuntu. If you have a different instance blueprint or want to install a standard certificate, see one of the following: Examples of these instance blueprints include WordPress, LAMP, Magento, MEAN, and so on. The following resolution covers installing a wildcard Let's Encrypt SSL certificate for websites hosted in a Lightsail instance with a Bitnami stack.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |