Certbot: Difference between revisions
From IT위키
No edit summary |
No edit summary |
||
| Line 6: | Line 6: | ||
=== 설치 === | === 설치 === | ||
=== | === 확인 === | ||
발급된 인증서 확인인 | |||
<pre> | <pre> | ||
[ec2-user@ip-172-9- | [ec2-user@ip-172-9-3-9~]$ sudo certbot certificates | ||
Saving debug log to /var/log/letsencrypt/letsencrypt.log | Saving debug log to /var/log/letsencrypt/letsencrypt.log | ||
| Line 21: | Line 15: | ||
Found the following certs: | Found the following certs: | ||
Certificate Name: ooo.kr | Certificate Name: ooo.kr | ||
Serial Number: | Serial Number: asd123456... | ||
Key Type: RSA | Key Type: RSA | ||
Domains: ooo.kr | Domains: ooo.kr *.ooo.kr | ||
Expiry Date: 2021- | Expiry Date: 2021-05-01 13:37:04+00:00 (VALID: 13 days) | ||
Certificate Path: /etc/letsencrypt/live/ooo.kr/fullchain.pem | Certificate Path: /etc/letsencrypt/live/ooo.kr/fullchain.pem | ||
Private Key Path: /etc/letsencrypt/live/ooo.kr/privkey.pem | Private Key Path: /etc/letsencrypt/live/ooo.kr/privkey.pem | ||
Certificate Name: ooo.ooo.kr | |||
Serial Number: fnklnl12345... | |||
Key Type: RSA | |||
Domains: ooo.ooo.kr | |||
Expiry Date: 2021-05-01 09:10:37+00:00 (VALID: 13 days) | |||
Certificate Path: /etc/letsencrypt/live/ooo.ooo.kr/fullchain.pem | |||
Private Key Path: /etc/letsencrypt/live/ooo.ooo.kr/privkey.pem | |||
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - | ||
</pre> | |||
* 유효기간 등 확인 가능능 | |||
=== 갱신 === | |||
<pre> | |||
$ sudo certbot renew | |||
</pre> | </pre> | ||
Revision as of 09:39, 18 April 2021
- Let's Encrypt에서 제공하는 인증서를 손쉽게 설치하고 갱신하는 등 관리할 수 있도롬 만들어진 ACME 도구
- 개발사: Electronic Frontier Foundation (EFF)[1]
사용법
설치
확인
발급된 인증서 확인인
[ec2-user@ip-172-9-3-9~]$ sudo certbot certificates
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Found the following certs:
Certificate Name: ooo.kr
Serial Number: asd123456...
Key Type: RSA
Domains: ooo.kr *.ooo.kr
Expiry Date: 2021-05-01 13:37:04+00:00 (VALID: 13 days)
Certificate Path: /etc/letsencrypt/live/ooo.kr/fullchain.pem
Private Key Path: /etc/letsencrypt/live/ooo.kr/privkey.pem
Certificate Name: ooo.ooo.kr
Serial Number: fnklnl12345...
Key Type: RSA
Domains: ooo.ooo.kr
Expiry Date: 2021-05-01 09:10:37+00:00 (VALID: 13 days)
Certificate Path: /etc/letsencrypt/live/ooo.ooo.kr/fullchain.pem
Private Key Path: /etc/letsencrypt/live/ooo.ooo.kr/privkey.pem
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- 유효기간 등 확인 가능능
갱신
$ sudo certbot renew
트러블 슈팅
- 인증서 자동 갱신 시도 시 아래와 같은 에러 발생[2]
The error was: PluginError('An authentication script must be provided with --manual-auth-hook when using the manual plugin non-interactively.',).
- 원인 및 해결법: 관련 블로그 글 보기
