{"id":351,"date":"2025-02-06T23:02:29","date_gmt":"2025-02-06T15:02:29","guid":{"rendered":"https:\/\/virtualcardx.com\/?p=351"},"modified":"2026-01-04T13:30:19","modified_gmt":"2026-01-04T05:30:19","slug":"%e4%bd%bf%e7%94%a8certbot%e8%87%aa%e5%8a%a8%e7%94%b3%e8%af%b7%e5%85%8d%e8%b4%b9%e8%af%81%e4%b9%a6","status":"publish","type":"post","link":"https:\/\/virtualcardx.com\/en\/2025\/02\/06\/\u4f7f\u7528certbot\u81ea\u52a8\u7533\u8bf7\u514d\u8d39\u8bc1\u4e66\/","title":{"rendered":"Automatically request free certificates with certbot"},"content":{"rendered":"
\"\"<\/figure>\n\n\n\n

<\/p>\n\n\n\n

SSH into the server to run your HTTP site as a user with Sudo privileges. Install system dependencies<\/p>\n\n\n\n

For Debian-based distributions (e.g. Debian, Ubuntu ...):<\/p>\n\n\n\n

$ sudo apt update\n$ sudo apt install python3 python3-venv libaugeas0 <\/code><\/pre>\n\n\n\n
For RPM-based distributions (e.g. Fedora, Centos ...):<\/p>\n\n\n\n
$ sudo dnf install python3 augeas-libs <\/code><\/pre>\n\n\n\n
If you installed any certbot packages using the OS package manager, apt, dnf, or yum, you should remove them before installing the certbot snapshot to ensure that certbot uses that snapshot when running commands, not from the OS installation package manager. The exact command to do this depends on your operating system, but common examples are sudo apt-get remove certbot, sudo dnf remove certbot, or sudo yum remove certbot. Setting up a Python virtual environment<\/p>\n\n\n\n
Execute the following instructions on the command line on your computer to set up the virtual environment.<\/p>\n\n\n\n
$ sudo python3 -m venv \/opt\/certbot\/\n$ sudo \/opt\/certbot\/bin\/pip install -upgrade pip <\/code><\/pre>\n\n\n\n
Install certbot<\/h2>\n\n\n\n
Run this command from the command line on your computer to install CERTBOT.<\/p>\n\n\n\n
$ sudo \/opt\/certbot\/bin\/pip install certbot certbot-nginx <\/code><\/pre>\n\n\n\n
Preparing the certbot command<\/h2>\n\n\n\n
Execute the following command on the command line on your computer to ensure that the certbot command can be run.<\/p>\n\n\n\n
$ sudo ln -s\/opt\/certbot\/bin\/certbot\/usr\/bin\/certbot <\/code><\/pre>\n\n\n\n
Select how you want to run certbot<\/p>\n\n\n\n
Either get and install your certificate...<\/h3>\n\n\n\n
Run this command to get the certificate and have Certbot automatically edit your NGINX configuration to use it and turn on HTTPS access in one step.<\/p>\n\n\n\n
$ sudo certbot -nginx <\/pre>\n\n\n\n
Or, just get certified<\/h3>\n\n\n\n
If you are feeling more conservative and want to make changes to the NGINX configuration manually, run this command.<\/p>\n\n\n\n
$ sudo certbot certonly -nginx <\/pre>\n\n\n\n
Setting up auto-renewal<\/p>\n\n\n\n
We recommend running the following line, which will add CRON jobs to the default crontab.<\/p>\n\n\n\n
$ echo \"0 0,12 * * * root \/opt\/certbot\/bin\/python -c 'import random; import time; time.sleep(random.random() * 3600)' && sudo certbot renew -q\" | sudo tee -a \/etc\/crontab > \/dev\/null<\/code><\/pre>\n\n\n\n
Confirmation of Certbot work<\/p>\n\n\n\n
To make sure your site is set up correctly, go to https:\/\/yourwebsite.com\/ In your browser, look for the lock icon in the URL bar. <\/p>\n\n\n\n
Upgrade CERTBOT<\/p>\n\n\n\n
$ sudo \/opt\/certbot\/bin\/pip install --upgrade certbot certbot-nginx<\/pre>\n\n\n\n
If this step results in an error, run sudo rm -rf \/opt\/certbot and repeat all installation instructions.<\/p>\n\n\n\n
If you want to change the email address for domain expiration reminders at a later stage, you can use the following command:<\/p>\n\n\n\n
$ certbot update_account --email yourname@example.com<\/code><\/pre>\n\n\n\n
\n
Source:https:\/\/certbot.eff.org\/instructions?ws=nginx&os=pip<\/a><\/p>\n<\/blockquote>","protected":false},"excerpt":{"rendered":"
SSH into the server with Sudo privileges using ... <\/p>\n
Read more<\/a><\/p>","protected":false},"author":1,"featured_media":353,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"class_list":["post-351","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology-share","resize-featured-image"],"_links":{"self":[{"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/posts\/351","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/comments?post=351"}],"version-history":[{"count":1,"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/posts\/351\/revisions"}],"predecessor-version":[{"id":1512,"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/posts\/351\/revisions\/1512"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/media\/353"}],"wp:attachment":[{"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/media?parent=351"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/categories?post=351"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/virtualcardx.com\/en\/wp-json\/wp\/v2\/tags?post=351"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}