~$ sudo certbot
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Which names would you like to activate HTTPS for?
-------------------------------------------------------------------------------
1: hogehoge1.com
2: hogehoge2.com
3: hogehoge3.com
4: hogehoge4.top
5: hogehoge5.com
6: hogehoge6.com
7: hogehoge7.com
8: hogehoge8.com
9: hogehoge9.com
10: hogehoge10.com
11: hogehoge11.com
-------------------------------------------------------------------------------
Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel):
このサーバでは11個のドメインを運用しています。(ドメイン名は伏せています)
すべてのドメインをまとめて認証書を発行する場合は、何も入力せずにエンターを押してください。
今回は、5番目のドメインの認証書を発行しました。
管理用メールアドレスの入力(初回のみ)
Enter email address (used for urgent renewal and security notices) (Enter 'c' to
cancel):
初回のみ管理用メールアドレスの入力を求められます。
緊急の通知、鍵を紛失したときの復旧、証明書の有効期限が近付いた場合の通知に使用されるそうです。
利用規約への同意 (初回のみ)
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
-------------------------------------------------------------------------------
Please read the Terms of Service at
Please choose whether HTTPS access is required or optional.
-------------------------------------------------------------------------------
1: Easy - Allow both HTTP and HTTPS access to these sites
2: Secure - Make all requests redirect to secure HTTPS access
-------------------------------------------------------------------------------
Select the appropriate number [1-2] then [enter] (press 'c' to cancel):
-------------------------------------------------------------------------------
Congratulations! You have successfully enabled https://hogehoge5.com
You should test your configuration at:
-------------------------------------------------------------------------------
IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at
/etc/letsencrypt/live/hogehoge5.com/fullchain.pem. Your cert will
expire on 2017-11-23. To obtain a new or tweaked version of this
certificate in the future, simply run certbot again with the
"certonly" option. To non-interactively renew *all* of your
certificates, run "certbot renew"
- If you lose your account credentials, you can recover through
e-mails sent to foo@hogehoge5.com.
- Your account credentials have been saved in your Certbot
configuration directory at /etc/letsencrypt. You should make a
secure backup of this folder now. This configuration directory will
also contain certificates and private keys obtained by Certbot so
making regular backups of this folder is ideal.
- If you like Certbot, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
Donating to EFF: https://eff.org/donate-le
~$
コメント
[…] さくらVPS Debian jessie に Certbot で SSL/TLS を導入してみた […]