Skip to main content

Generate Multi Domain SSL Certificate by useing cert bot tool from Let's Encrypt.

 We are using cert bot tool to generate / create multi domain certificate from Let's Encrypt CA.

we are using following command 




create CSR config file to generate CSR:

Example of csr file is:

default_bits            = 2048  # RSA key size
encrypt_key             = no  # Protect private key
default_md              = sha256  # MD to use
utf8                    = yes  # Input is UTF-8
string_mask             = utf8only  # Emit UTF-8 strings
prompt                  = no  # Prompt for DN
distinguished_name      = server_dn  # DN template
req_extensions          = server_reqext  # Desired extensions

[ server_dn ]
countryName             = CountryName # ISO 3166
stateOrProvinceName     = StateName
localityName            = CityName
organizationName        = OrgName
organizationalUnitName  = UnitName
commonName              = domainname.tld  # Should match a SAN under alt_names

[ server_reqext ]
basicConstraints        = CA:FALSE
keyUsage                = critical,digitalSignature,keyEncipherment
extendedKeyUsage        = serverAuth
subjectKeyIdentifier    = hash
subjectAltName          = @alt_names

[alt_names]
DNS.1            = domainname.tld  #Example
DNS.2            = subdomain1.domainname.tld  #Example
DNS.3            = subdomain2.domainname.tld  #Example


openssl req -new -nodes -sha256 -out newcsr.csr -config cert.cfg -keyout private.key


certbot certonly --csr newcsr.csr --manual --preferred-challenges dns -d "domainname.tld" -d "subdomain1.domainname.tld" -d "subdomain2.domainname.tld" 

 

now your file is generated use it and place it properly.

Comments

Post a Comment

Popular posts from this blog

How to Clear Putty Screen while working with Linux Server?

 Method to clear putty screen while working with Linux Server. It will clear screen buffer and provide true experience of clear screen ( console ).  Have you ever worked remotely with Linux system? it is common to work remotely on Linux system. Putty is popular remote login tool in system admin community. It's freely available open source software and it works on Linux as well as Windows platform. It's widely adopted tool for remote login. Figure: Putty Icon - Popular Remote Login Software. Now imagine you are connected remotely with a Linux system and you are troubleshooting some problem. You are typing command on putty console  and running it and after some time all screen field with lot of text. Screen become messy with full of text  and create confusion while troubleshooting Linux system. After then you type clear command on console and all text cleared as you execute clear command but as soon as you touch scroll bar or up down arrow key, text returned on console...
Post a Comment
Read more

Difference between static web page and dynamic web page.

  T he difference between static and dynamic web pages is an important concept to understand for anyone interested in web development or online content creation. In simple terms, a static web page is a page that is pre-built and sent to the user as-is, while a dynamic web page is one that is built on-the-fly in response to user requests. In this article, we'll explore the differences between these two types of web pages in more detail, including their features, advantages, and disadvantages. Static Web Pages A static web page is a pre-built HTML file that is sent to the user's browser when they request a particular URL. These pages are built using HTML, CSS, and other web technologies, and they typically contain fixed content that does not change over time. Static pages are simple, fast, and easy to create, making them a popular choice for small websites and blogs that do not require a lot of interactivity. Features of Static Web Pages Static web pages have several...
Post a Comment
Read more