{"id":262,"date":"2021-02-01T16:18:12","date_gmt":"2021-02-01T07:18:12","guid":{"rendered":"https:\/\/centos.ihavenomoney.co.kr\/?page_id=262"},"modified":"2021-02-26T16:43:55","modified_gmt":"2021-02-26T07:43:55","slug":"lets-encrypt-open-ssl-tls","status":"publish","type":"page","link":"https:\/\/centos.ihavenomoney.co.kr\/?page_id=262","title":{"rendered":"Let\u2019s Encrypt  \/ open SSL\/TLS"},"content":{"rendered":"<h3>Remark : SSL certificate<\/h3>\n<h3>1. Install Let\u2019s Encrypt client (Certbot)<\/h3>\n<pre class=\"lang:vim decode:true \"># yum install epel-release\r\n# yum install certbot python2-certbot-apache mod_ssl<\/pre>\n<h3>2. Get an SSL Certificate<\/h3>\n<pre class=\"lang:vim decode:true \"># sudo certbot --apache -d test.com -d www.test.com\r\n\r\nOr\r\n\r\n# sudo certbot --apache -d sub.test.com<\/pre>\n<pre class=\"lang:vim decode:true \">Saving debug log to \/var\/log\/letsencrypt\/letsencrypt.log\r\nPlugins selected: Authenticator apache, Installer apache\r\nEnter email address (used for urgent renewal and security notices) (Enter 'c' to\r\ncancel): admin@domain.com\r\nStarting new HTTPS connection (1): acme-v02.api.letsencrypt.org\r\n\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nPlease read the Terms of Service at\r\nhttps:\/\/letsencrypt.org\/documents\/LE-SA-v1.2-November-15-2017.pdf. You must\r\nagree in order to register with the ACME server at\r\nhttps:\/\/acme-v02.api.letsencrypt.org\/directory\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n(A)gree\/(C)ancel: A\r\n\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nWould you be willing to share your email address with the Electronic Frontier\r\nFoundation, a founding partner of the Let's Encrypt project and the non-profit\r\norganization that develops Certbot? We'd like to send you email about our work\r\nencrypting the web, EFF news, campaigns, and ways to support digital freedom.\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n(Y)es\/(N)o: N\r\nStarting new HTTPS connection (1): supporters.eff.org\r\nObtaining a new certificate\r\nPerforming the following challenges:\r\nhttp-01 challenge for domain.com\r\nWaiting for verification...\r\nCleaning up challenges\r\nCreated an SSL vhost at \/etc\/httpd\/conf.d\/domain.com-le-ssl.conf\r\nDeploying Certificate to VirtualHost \/etc\/httpd\/conf.d\/domain.com-le-ssl.conf<\/pre>\n<pre class=\"lang:vim decode:true \">Please choose whether or not to redirect HTTP traffic to HTTPS, removing HTTP access.\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n1: No redirect - Make no further changes to the webserver configuration.\r\n2: Redirect - Make all requests redirect to secure HTTPS access. Choose this for\r\nnew sites, or if you're confident your site works on HTTPS. You can undo this\r\nchange by editing your web server's configuration.\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nSelect the appropriate number [1-2] then [enter] (press 'c' to cancel): 1<\/pre>\n<p>2.1 delete SSL (\ud544\uc694\uc2dc)<\/p>\n<pre class=\"lang:vim decode:true \"># sudo certbot delete --cert-name example.com<\/pre>\n<h3>3. check the newly created SSL certificate<\/h3>\n<pre class=\"lang:vim decode:true \"># ls \/etc\/letsencrypt\/live\/domain.com\/\r\n\r\ncert.pem chain.pem fullchain.pem privkey.pem<\/pre>\n<h3>Conform<\/h3>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/centos.ihavenomoney.co.kr\/wp-content\/uploads\/2021\/02\/R3_SSL.jpg\" alt=\"\" width=\"472\" height=\"581\" class=\"alignnone size-full wp-image-306\" srcset=\"https:\/\/centos.ihavenomoney.co.kr\/wp-content\/uploads\/2021\/02\/R3_SSL.jpg 472w, https:\/\/centos.ihavenomoney.co.kr\/wp-content\/uploads\/2021\/02\/R3_SSL-244x300.jpg 244w\" sizes=\"auto, (max-width: 472px) 100vw, 472px\" \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Remark : SSL certificate 1. Install Let\u2019s Encrypt client (Certbot) # yum install epel-release # yum install certbot python2-certbot-apache mod_ssl 2. Get an SSL Certificate # sudo certbot &#8211;apache -d test.com -d www.test.com Or # sudo certbot &#8211;apache -d sub.test.com Saving debug log to \/var\/log\/letsencrypt\/letsencrypt.log Plugins selected: Authenticator apache, Installer apache Enter email address (used &hellip;<br \/><a href=\"https:\/\/centos.ihavenomoney.co.kr\/?page_id=262\" class=\"more-link pen_button pen_element_default pen_icon_arrow_double\"><span class=\"screen-reader-text\">Let\u2019s Encrypt  \/ open SSL\/TLS<\/span> \ub354\ubcf4\uae30<\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"parent":10,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-262","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=\/wp\/v2\/pages\/262","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=262"}],"version-history":[{"count":5,"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=\/wp\/v2\/pages\/262\/revisions"}],"predecessor-version":[{"id":307,"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=\/wp\/v2\/pages\/262\/revisions\/307"}],"up":[{"embeddable":true,"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=\/wp\/v2\/pages\/10"}],"wp:attachment":[{"href":"https:\/\/centos.ihavenomoney.co.kr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=262"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}