certbot
Installation
SKILL.md
Identity
- CLI tool:
certbot - Certs:
/etc/letsencrypt/live/<domain>/(symlinks intoarchive/) - Renewal configs:
/etc/letsencrypt/renewal/<domain>.conf - Accounts:
/etc/letsencrypt/accounts/ - Logs:
/var/log/letsencrypt/letsencrypt.log - Auto-renewal:
certbot.timer(systemd) or/etc/cron.d/certbot(cron-based installs) - Install options:
snap install --classic certbot(recommended),apt install certbot/dnf install certbot, orpip install certbot
Key Operations
| Operation | Command |
|---|---|
| Obtain cert (HTTP-01 via nginx plugin) | sudo certbot --nginx -d example.com -d www.example.com |
| Obtain cert (HTTP-01 via apache plugin) | sudo certbot --apache -d example.com |
| Obtain cert (standalone, port 80) | sudo certbot certonly --standalone -d example.com |
| Obtain cert (DNS-01 for wildcard) | sudo certbot certonly --manual --preferred-challenges dns -d '*.example.com' -d example.com |
| Obtain cert (webroot, no web server restart) | sudo certbot certonly --webroot -w /var/www/html -d example.com |
Related skills