Hey everyone,
this is basically how I have been requesting certs from letsencrypt… anyone give input/advice on whether its the right way to do it?
I use nginx in most cases as a rev proxy in front of lots of web apps.
-
create nginx site config like usual, but add in a location block for /.well-known and alias it to /usr/share/nginx/html.
location /.well-known { alias /usr/share/nginx/html/.well-known; autoindex on; }
-
restart nginx to reload the vhost configs
-
run letsencrypt (i run this from my users homedir, not sure yet how to install it “globally”
± % ./letsencrypt-auto certonly --webroot -w /usr/share/nginx/html -d mydomain.com
-
edit nginx conf to include the certificate from
/etc/letsencrypt/live/mydomain.com/fullchain.pem.