Skip to main content

Generate Multi Domain SSL Certificate by useing cert bot tool from Let's Encrypt.

 We are using cert bot tool to generate / create multi domain certificate from Let's Encrypt CA.

we are using following command 




create CSR config file to generate CSR:

Example of csr file is:

default_bits            = 2048  # RSA key size
encrypt_key             = no  # Protect private key
default_md              = sha256  # MD to use
utf8                    = yes  # Input is UTF-8
string_mask             = utf8only  # Emit UTF-8 strings
prompt                  = no  # Prompt for DN
distinguished_name      = server_dn  # DN template
req_extensions          = server_reqext  # Desired extensions

[ server_dn ]
countryName             = CountryName # ISO 3166
stateOrProvinceName     = StateName
localityName            = CityName
organizationName        = OrgName
organizationalUnitName  = UnitName
commonName              = domainname.tld  # Should match a SAN under alt_names

[ server_reqext ]
basicConstraints        = CA:FALSE
keyUsage                = critical,digitalSignature,keyEncipherment
extendedKeyUsage        = serverAuth
subjectKeyIdentifier    = hash
subjectAltName          = @alt_names

[alt_names]
DNS.1            = domainname.tld  #Example
DNS.2            = subdomain1.domainname.tld  #Example
DNS.3            = subdomain2.domainname.tld  #Example


openssl req -new -nodes -sha256 -out newcsr.csr -config cert.cfg -keyout private.key


certbot certonly --csr newcsr.csr --manual --preferred-challenges dns -d "domainname.tld" -d "subdomain1.domainname.tld" -d "subdomain2.domainname.tld" 

 

now your file is generated use it and place it properly.

Comments

Post a Comment

Popular posts from this blog

Solve FTP Error : 534 Protection level negotiation failed , FTP Client : FileZilla

You are not able to connect your ftp account and you are getting 534 Error in FileZilla. Don't Worry, We have Solution for you. It happens due to SSL requirement.     Question: When i want to connect my ftp account with Filezilla ftp client, it fail to retrieve directory listing then connection closed by server and i am unable to connect my ftp site. Following is output given by my ftp client: " Status: Resolving address of exampale.com Status: Connecting to 194.0.292.194 :21... Status: Connection established, waiting for welcome message... Status: Initializing TLS... Status: Verifying certificate... Status: TLS connection established. Status: Connected Status: Retrieving directory listing... Command: PWD Response: 257 "/" is current directory. Command: TYPE I Response: 200 Type set to I. Command: PASV Response: 227 Entering Passive Mode (194,0,292,194,244,196). Command: LIST Response: 534 Protection level negotiation failed. Error: Failed to retrieve directory l
Post a Comment
Read more

Float Cum Boost Charger ( FCBC )

Float - Cum - Boost charger is functionally a charger. We will discuss here briefly about functionality, operation and application of float cum boost charger [FCBC]. Float Cum Boost charger is functionally a charger. It work on two operating modes first float mode and second boost mode. Float Cum Boost Charger are used for charging batteries at sub station or power house protection circuit and telecom exchanges. They are used in places where non-interrupted Power supply required. Float chargers used in telecommunication industry consists of filler circuit to ensure continues power supply. The float part of the charger remains in circuit even when the power is driven from batteries. There are few characteristics of a Float Cum Boost charger as given below:- Power Supply: It operates on single phase or three phase power supply and designed for continuous operation. Operation:  The charger has two modes. Float mode and boost mode. In float mode, the FCBC supplies the DC load and the tric
Post a Comment
Read more

How to Clear Putty Screen while working with Linux Server?

 Method to clear putty screen while working with Linux Server. It will clear screen buffer and provide true experience of clear screen ( console ).  Have you ever worked remotely with Linux system? it is common to work remotely on Linux system. Putty is popular remote login tool in system admin community. It's freely available open source software and it works on Linux as well as Windows platform. It's widely adopted tool for remote login. Figure: Putty Icon - Popular Remote Login Software. Now imagine you are connected remotely with a Linux system and you are troubleshooting some problem. You are typing command on putty console  and running it and after some time all screen field with lot of text. Screen become messy with full of text  and create confusion while troubleshooting Linux system. After then you type clear command on console and all text cleared as you execute clear command but as soon as you touch scroll bar or up down arrow key, text returned on console. Now you a
Post a Comment
Read more