21'C 흐림
서울 강남구
root@webvision:~# systemctl stop apache2
root@webvision:~# cd /etc/letsencrypt
root@webvision:~# certbot renew
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/webvision.co.kr.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Renewing an existing certificate for webvision.co.kr|
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Congratulations, all renewals succeeded:
/etc/letsencrypt/live/returnway.com/fullchain.pem (success)
root@webvision:~# systemctl start apache2
2. 이동한 위치에서 sudo certbot renew 를 실행한다.
그러면 인증서 갱신이 실행되며, 제일 마지막에 Congratulations, all renewals succeeded 라는 문구가 나온다.
3. 이제 서버를 재실행 한다. 나의 경우 apache2 서버를 사용하므로, sudo service apache2 restart 를 실행했다.
그 후, 자신의 서버에 접속해보면 https가 정상적으로 적용되는 모습을 확인할 수 있다!
===========================================================================
서브도메인 인증서 추가
# sudo certbot certonly --webroot -w (웹 루트 경로) -d (도메인 네임)
# certbot certonly --webroot -w /home/test/public_html -d test.webvision.co.kr
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for test.webvision.co.kr
Successfully received certificate.
Certificate is saved at: /etc/letsencrypt/live/test.webvision.co.kr/fullchain.pem
Key is saved at: /etc/letsencrypt/live/test.webvision.co.kr/privkey.pem
This certificate expires on 2024-05-20.
These files will be updated when the certificate renews.
Certbot has set up a scheduled task to automatically renew this certificate in the background.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
If you like Certbot, please consider supporting our work by:
* Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
* Donating to EFF: https://eff.org/donate-le
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
<IfModule mod_ssl.c>
<VirtualHost _default_:443>
ServerAdmin webmaster@localhost
ServerName test.webvision.co.kr
DocumentRoot /home/test/public_html
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
SSLEngine on
#SSLCertificateFile "/etc/ssl/test.webvision.co.kr/certificate.crt"
#SSLCertificateKeyFile "/etc/ssl/test.webvision.co.kr/private.key"
#SSLCertificateChainFile "/etc/ssl/test.webvision.co.kr/ca_bundle.crt"
SSLCertificateFile "/etc/letsencrypt/live/test.webvision.co.kr/cert.pem"
SSLCertificateKeyFile "/etc/letsencrypt/live/test.webvision.co.kr/privkey.pem"
SSLCertificateChainFile "/etc/letsencrypt/live/test.webvision.co.kr/chain.pem"
<FilesMatch ".(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory /usr/lib/cgi-bin>
SSLOptions +StdEnvVars
</Directory>
</VirtualHost>
</IfModule>
#cd /etc/apache2/sites-available
#a2ensite test.webvision.co.kr-ssl.conf
#cd ../sites-enabled
#ll
lrwxrwxrwx 1 root root 40 2월 20 17:43 test.webvision.co.kr-ssl.conf -> ../sites-available/test.webvision.co.kr-ssl.conf
systemctl restart apache2