Hi,
I’ve just start using Lets encrypt to implement a solution at home.
The purpose is to publish a website with a certificate, simple as that.
The application is UNMS and uses a LetsEncrypt certificate that we can use our own.
So, after generate a certificate with certbot, with 0 errors. i run the following command
curl -fsSL https://unms.com/v1/install > /tmp/unms_inst.sh && sudo bash /tmp/unms_inst.sh --http-port 8091 --https-port 8883 --ssl-cert-dir /etc/letsencrypt/live/mywebsite.ddns.net/ --ssl-cert fullchain.pem --ssl-cert-key privkey.pem
And with that i get the following error:
ERROR: Cert file:
/etc/letsencrypt/archive/mywebsite.ddns.net/fullchain1.pem
is not placed in the cert directory:
/etc/letsencrypt/live/mywebsite.ddns.net
Check --ssl-cert-dir and --ssl-cert arguments for symbolic links. The actual ssl cert file (not just symbolic link) must be within the ssl cert directory or its subdirectories.
So thw ssl cert directory is point to the “live” one like the manual told me to do, and asks about a file that doens’t exist fullchain1.pem, i only have fullchain.pem
I think you should leave that directory alone and use a --deploy-hook to copy the cert and key to a directory where unms will find them, and to do whatever is needed to tell unms it has to use a new cert. (pay attention to permissions when copying the private key)
cp -L should read the symlink and copy the actual file to the destination of your choosing.