Go back

acme.sh生成自动续费的免费SSL证书

Published:  at  08:27 PM

机器环境

安装acme.sh

git clone https://gitee.com/neilpang/acme.sh.git
cd acme.sh
./acme.sh --install -m 243027571@qq.com

重启终端

生成证书

# webroot是存放网站根目录的目录
acme.sh  --issue  -d layman.xin --webroot  /root/hexoBlog/

安装证书

mkdir -p /usr/local/nginx/cert/

acme.sh --install-cert -d layman.xin \
--key-file       /usr/local/nginx/cert/domain.key  \
--fullchain-file /usr/local/nginx/cert/domain.pem \
--reloadcmd     "service nginx force-reload"

配置nginx

server {
    listen  80;
    server_name     layman.xin;
    return  301 https://$server_name$request_uri;
}
server {
    listen               443 ssl;
    server_name          layman.xin;
    ssl_certificate      /usr/local/nginx/cert/domain.pem;
    ssl_certificate_key  /usr/local/nginx/cert/domain.key;

    location / {
        root /root/hexoBlog;
        index index.html;
    }
}

# 配置完重启nginx
systemctl restart nginx
Share this post on:
Share this post via WhatsApp Share this post on Facebook Share this post on X Share this post via Telegram Share this post on Pinterest Share this post via email
Previous Post
hexo访问速度优化方案
Next Post
使用pyjm3加密python源码