Certbot: Difference between revisions

← Older edit Newer edit →

@@ Line 23: / Line 23: @@
 # Install a certificate
 sudo certbot --apache -d wiki.davidl.me
 # Generate a certificate without install
 sudo certbot certonly --apache -d wiki.davidl.me
-# Generate a wildcard certificate
-sudo certbot -i apache --dns-cloudflare --dns-cloudflare-credentials ~/.secrets/certbot/cloudflare.ini -d local.davidl.me -d *.local.davidl.me
 # Renew all certificates
@@ Line 36: / Line 35: @@
 # Delete a certificate
 sudo certbot delete --cert-name example.com
+</pre>
+===Wildcard Certificates===
+LetsEncrypt requires dns challenges for wildcard certificates.
+This means you'll need to input your dns information and us a compatible dns for auto-renewals.
+Fill out dns creditials in <code>~/.secrets/certbot/cloudflare.ini</code>
+<pre>
+# Cloudflare API credentials used by Certbot
+dns_cloudflare_email = <email>
+dns_cloudflare_api_key = <apikey>
+</pre>
+<pre>
+# Generate a wildcard certificate
+sudo certbot -i apache --dns-cloudflare --dns-cloudflare-credentials ~/.secrets/certbot/cloudflare.ini -d local.davidl.me -d *.local.davidl.me
 </pre>