pip install certbot
mkdir letsencrypt
export AWS_PROFILE=myprofile
pip install certbot-dns-route53
certbot certonly \
--logs-dir ./letsencrypt/log/ \
--config-dir ./letsencrypt/config/ \
--work-dir ./letsencrypt/work/ \
-m gustavo.henrique@mydomain.com.br \
--agree-tos \
--non-interactive \
--server https://acme-v02.api.letsencrypt.org/directory \
-d mydomain.com -d '*.mydomain.com' --dns-route53
ls letsencrypt/config/archive/mydomain.com
# renew
certbot renew --cert-name mydomain.com --logs-dir ./letsencrypt/log/ --config-dir ./letsencrypt/config/ --work-dir ./letsencrypt/work/
pip install certbot-dns-digitalocean
certbot certonly \
--agree-tos \
--logs-dir ./letsencrypt/log/ \
--config-dir ./letsencrypt/config/ \
--work-dir ./letsencrypt/work/ \
-m gustavo@gustavohenrique.net \
--dns-digitalocean \
--dns-digitalocean-credentials ~/digitalocean.ini \
-d "mydomain.com" \
-d "*.mydomain.com"
pip install certbot-dns-cloudflare
certbot certonly \
--agree-tos \
--logs-dir ./letsencrypt/log/ \
--config-dir ./letsencrypt/config/ \
--work-dir ./letsencrypt/work/ \
-m gustavo@gustavohenrique.net \
--dns-cloudflare \
--dns-cloudflare-credentials ~/cloudflare.ini \
-d "mydomain.com" \
-d "*.mydomain.com"
DOMAIN="mydomain.com,*.mydomain.com"
certbot certonly \
--server https://acme-v02.api.letsencrypt.org/directory \
--agree-tos \
--manual \
--logs-dir ./letsencrypt/log/ \
--config-dir ./letsencrypt/config/ \
--work-dir ./letsencrypt/work/ \
-m gustavo@gustavohenrique.net \
--preferred-challenges dns \
--debug-challenges \
-d "$DOMAIN"
You need to change TXT record manually and waiting for DNS propagation (maybe 1 hour) before press enter to continue.
Check running:
nslookup -q=txt _acme-challenge.mydomain.com
# or
dig TXT _acme-challenge.mydomain.com