11-20-2016, 03:11 AM
acmetool - An Alternative for CertBot | DNS Auth for Cloudflare
acmetool is an alternative client for acme CAs like Let's encrypt. It's easier to use as well. One of the biggest differences is it doesn't configure the web servers for you. It offers autorenewal using cron. (With certbot, you need to manually setup the cronjob)
I will be helping you to compile it from source
THen setup for DNS auth using cloudflare.
NOTE: This is for CentOS only. (only tested on 7) I will be continuing writing this next week. (I'll add instructions for other distros)
Links:
https://github.com/hlandau/acme
Installation of Requirements
CentOS
1. Let's get the source first.
[unix]
cd ~
git clone https://github.com/hlandau/acme
[/unix]
2. Compiling the code
[unix]
make
sudo make install
[/unix]
3. acmetool setup
[unix]
sudo acmetool quickstart
[/unix]
When asked for what ACME server to use, please select the Live server by pressing "1" then press enter.
When asked for what challenge to use, please select hook by pressing "6" then press enter.
4. Setup the hooks that is needed
[unix]
cd /usr/libexec/acme/hooks
wget https://github.com/yinguanhao/acme-dns-h...r/dns.hook
[/unix]
Get the API key for your cloudflare account
Testing the hook
5. Getting a certificate
This is the easy part
[unix]
acmetool want domain.tld www.domain.tld sub.domain.tld #Replace with your domains
[/unix]
Certificates are stored in /var/lib/acme/live/domain.tld
Extra Notes:
Use "/var/lib/acme/live/domain.tld/fullchain" when configuring your webserver
The private key is stored in "/var/lib/acme/live/domain.tld/privkey".
(Change domain.tld to your domain of course)
I don't remember if it asks you to setup cronjobs on quickstart, if it asked you select yes. (This is for auto renewal)
acmetool is an alternative client for acme CAs like Let's encrypt. It's easier to use as well. One of the biggest differences is it doesn't configure the web servers for you. It offers autorenewal using cron. (With certbot, you need to manually setup the cronjob)
I will be helping you to compile it from source
THen setup for DNS auth using cloudflare.NOTE: This is for CentOS only. (only tested on 7) I will be continuing writing this next week. (I'll add instructions for other distros)
Links:
https://github.com/hlandau/acme
Installation of Requirements
CentOS
Spoiler Expand
1. Let's get the source first.
[unix]
cd ~
git clone https://github.com/hlandau/acme
[/unix]
2. Compiling the code
[unix]
make
sudo make install
[/unix]
3. acmetool setup
[unix]
sudo acmetool quickstart
[/unix]
When asked for what ACME server to use, please select the Live server by pressing "1" then press enter.
When asked for what challenge to use, please select hook by pressing "6" then press enter.
4. Setup the hooks that is needed
[unix]
cd /usr/libexec/acme/hooks
wget https://github.com/yinguanhao/acme-dns-h...r/dns.hook
[/unix]
Get the API key for your cloudflare account
Spoiler Expand
Spoiler Expand
5. Getting a certificate
This is the easy part
[unix]
acmetool want domain.tld www.domain.tld sub.domain.tld #Replace with your domains
[/unix]
Certificates are stored in /var/lib/acme/live/domain.tld
Extra Notes:
Use "/var/lib/acme/live/domain.tld/fullchain" when configuring your webserver
The private key is stored in "/var/lib/acme/live/domain.tld/privkey".
(Change domain.tld to your domain of course)
I don't remember if it asks you to setup cronjobs on quickstart, if it asked you select yes. (This is for auto renewal)
http://FreeVPS.club - Free VPSs!