Add sample commands to link letsencrypt cert/key files.
This commit is contained in:
parent
68c102225f
commit
499f70cd1a
|
@ -195,14 +195,33 @@ restart services which use the cert files.
|
|||
|
||||
### Create symbol links
|
||||
|
||||
#### For servers deployed with __iRedMail Easy__ platform
|
||||
|
||||
If you deployed iRedMail with the [__iRedMail Easy__](https://www.iredmail.org/easy.html)
|
||||
platform, ssl cert/key files are:
|
||||
|
||||
* `/opt/iredmail/ssl/key.pem`: private key
|
||||
* `/opt/iredmail/ssl/cert.pem`: certificate
|
||||
* `/opt/iredmail/ssl/combined.pem`: full chain
|
||||
|
||||
Run commands below on RHEL/CentOS/Debian/Ubuntu/OpenBSD:
|
||||
|
||||
!!! attention
|
||||
|
||||
If you deployed iRedMail with the __iRedMail Easy__ platform, ssl cert
|
||||
files are stored under `/opt/iredmail/ssl/`:
|
||||
Please replace `<domain>` in sample commands below by the real domain name
|
||||
on your file system.
|
||||
|
||||
* `key.pem`: private key
|
||||
* `cert.pem`: certificate
|
||||
* `combined.pem`: full chain
|
||||
```
|
||||
cd /opt/iredmail/ssl/
|
||||
mv cert.pem cert.pem.bak
|
||||
mv key.pem key.pem.bak
|
||||
mv combined.pem combined.pem.bak
|
||||
ln -s /etc/letsencrypt/live/<domain>/fullchain.pem combined.pem
|
||||
ln -s /etc/letsencrypt/live/<domain>/fullchain.pem cert.pem
|
||||
ln -s /etc/letsencrypt/live/<domain>/privkey.pem key.pem
|
||||
```
|
||||
|
||||
#### For servers deployed with the classical downloadable iRedMail installer
|
||||
|
||||
* On RHEL/CentOS:
|
||||
|
||||
|
|
|
@ -28,7 +28,11 @@
|
|||
<li><a href="#request-a-free-cert-from-lets-encrypt_1">Request a free cert from Let's Encrypt</a></li>
|
||||
<li><a href="#renew-the-cert-automatically">Renew the cert automatically</a></li>
|
||||
<li><a href="#use-lets-encrypt-cert">Use Let's Encrypt cert</a><ul>
|
||||
<li><a href="#create-symbol-links">Create symbol links</a></li>
|
||||
<li><a href="#create-symbol-links">Create symbol links</a><ul>
|
||||
<li><a href="#for-servers-deployed-with-iredmail-easy-platform">For servers deployed with iRedMail Easy platform</a></li>
|
||||
<li><a href="#for-servers-deployed-with-the-classical-downloadable-iredmail-installer">For servers deployed with the classical downloadable iRedMail installer</a></li>
|
||||
</ul>
|
||||
</li>
|
||||
<li><a href="#restart-network-services">Restart network services</a></li>
|
||||
</ul>
|
||||
</li>
|
||||
|
@ -219,16 +223,30 @@ postfix/nginx/dovecot after renewed:</p>
|
|||
to the self-signed SSL cert generated by iRedMail installer, then
|
||||
restart services which use the cert files.</p>
|
||||
<h3 id="create-symbol-links">Create symbol links</h3>
|
||||
<h4 id="for-servers-deployed-with-iredmail-easy-platform">For servers deployed with <strong>iRedMail Easy</strong> platform</h4>
|
||||
<p>If you deployed iRedMail with the <a href="https://www.iredmail.org/easy.html"><strong>iRedMail Easy</strong></a>
|
||||
platform, ssl cert/key files are:</p>
|
||||
<ul>
|
||||
<li><code>/opt/iredmail/ssl/key.pem</code>: private key</li>
|
||||
<li><code>/opt/iredmail/ssl/cert.pem</code>: certificate</li>
|
||||
<li><code>/opt/iredmail/ssl/combined.pem</code>: full chain</li>
|
||||
</ul>
|
||||
<p>Run commands below on RHEL/CentOS/Debian/Ubuntu/OpenBSD:</p>
|
||||
<div class="admonition attention">
|
||||
<p class="admonition-title">Attention</p>
|
||||
<p>If you deployed iRedMail with the <strong>iRedMail Easy</strong> platform, ssl cert
|
||||
files are stored under <code>/opt/iredmail/ssl/</code>:</p>
|
||||
<ul>
|
||||
<li><code>key.pem</code>: private key</li>
|
||||
<li><code>cert.pem</code>: certificate</li>
|
||||
<li><code>combined.pem</code>: full chain</li>
|
||||
</ul>
|
||||
<p>Please replace <code><domain></code> in sample commands below by the real domain name
|
||||
on your file system.</p>
|
||||
</div>
|
||||
<pre><code>cd /opt/iredmail/ssl/
|
||||
mv cert.pem cert.pem.bak
|
||||
mv key.pem key.pem.bak
|
||||
mv combined.pem combined.pem.bak
|
||||
ln -s /etc/letsencrypt/live/<domain>/fullchain.pem combined.pem
|
||||
ln -s /etc/letsencrypt/live/<domain>/fullchain.pem cert.pem
|
||||
ln -s /etc/letsencrypt/live/<domain>/privkey.pem key.pem
|
||||
</code></pre>
|
||||
|
||||
<h4 id="for-servers-deployed-with-the-classical-downloadable-iredmail-installer">For servers deployed with the classical downloadable iRedMail installer</h4>
|
||||
<ul>
|
||||
<li>On RHEL/CentOS:</li>
|
||||
</ul>
|
||||
|
|
Loading…
Reference in New Issue