third-party-mirrors/EDDN
1
0
Fork 0
mirror of https://github.com/EDCD/EDDN.git synced 2025-06-15 23:02:05 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity

docs: Basic instructions on putting existing LetsEncrypt cert files in place

Browse Source
This commit is contained in:
Athanasius 2021-06-04 15:24:40 +01:00
parent adaa6822f0
commit c383d97fee
1 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
docs/Running-this-software.md
View File

@ -45,11 +45,36 @@ need to install netdata. On Debian-based systems:
The default configuration should be all you need, listening on The default configuration should be all you need, listening on
`127.0.0.1:19999`. `127.0.0.1:19999`.
### LetsEncrypt: certbot
It will be necessary to renew the TLS certificate using certbot (or some
alternative ACME client).
apt install certbot
### Reverse Proxy with nginx ### Reverse Proxy with nginx
If you don't yet have nginx installed then start with: If you don't yet have nginx installed then start with:
apt install nginx-light apt install nginx-light
#### LetsEncrypt TLS Certificates
You will need a LetsEncrupt/ACME client in order to keep the TLS certificate
renewed.
cd /etc/letsencrypt
mkdir -p archive/eddn.edcd.io
mkdir -p live/eddn.edcd.io
cd archive/eddn.edcd.io
cp <source for all *.pem files> .
chmod 644 *.pem
chmod 600 privkey*.pem
cd ../../live/eddn.edcd.io
# NB: You need to check what the *newest* file is. The `1` will be a
# greater number if the certificate has ever been renewed.
ln -s ../../archive/eddn.edcd.io/fullchain1.pem fullchain.pem
ln -s ../../archive/eddn.edcd.io/privkey1.pem privkey.pem
#### nginx configuration
There is an example configuration in `contrib/nginx-eddn.conf` which makes There is an example configuration in `contrib/nginx-eddn.conf` which makes
some assumptions: some assumptions: