certbot自动更新证书

发布于 2020-12-12  623 次阅读


#撤销limour.top证书
certbot revoke --cert-path /etc/letsencrypt/live/limour.top/fullchain.pem
#https://github.com/ywdblog/certbot-letencrypt-wildcardcertificates-alydns-au
git clone https://github.com/ywdblog/certbot-letencrypt-wildcardcertificates-alydns-au certbot-wildcard
cd certbot-wildcard
chmod 0777 au.sh
#https://ram.console.aliyun.com/users
 创建一个用户,添加云解析管理权限
#用户登录名称 ***@limour.onaliyun.com
#AccessKey ID ****
#AccessKey Secret ****
#将其配置在 au.sh 文件中
#重新申请证书
certbot certonly  -d limour.top --manual --preferred-challenges dns  --manual-auth-hook "/root/certbot-wildcard/au.sh php aly add" --manual-cleanup-hook "/root/certbot-wildcard/au.sh php aly clean"
#更新全部证书
certbot renew  --manual --preferred-challenges dns --manual-auth-hook "/root/certbot-wildcard/au.sh php aly add" --manual-cleanup-hook "/root/certbot-wildcard/au.sh php aly clean" --manual-public-ip-logging-ok

systemctl restart httpd
#设置自动更新
nano /root/updatecert.sh

#!/bin/bash
certbot renew  --manual --preferred-challenges dns --manual-auth-hook "/root/certbot-wildcard/au.sh php aly add" --manual-cleanup-hook "/root/certbot-wildcard/au.sh php aly clean"
systemctl restart httpd

chmod 0777 /root/updatecert.sh

nano /etc/crontab
0 1 9 * * root /root/updatecert.sh > /root/upclog.txt

医学生