LetsEncrypt
Certbot
Standalone (local web server)
Open port 80
certbot certonly --standalone -d mydomain.com
Close port 80
Manual
certbot certonly --manual -d 'ithero.eu'
Files get created in /etc/letsencrypt/live/ithero.eu
:
- cert.pem
- chain.pem
- fullchain.pem
- privkey.pem
Move files
If ran with sudo, the folder is owned by root:
cp -rL /etc/letsencrypt/live/ithero.eu ~/Documents/
chown -R me:me ~/Documents/ithero.eu
Not yet used
certbot
paths:
Flags for changing execution paths & servers
--cert-path CERT_PATH
Path to where certificate is saved (with auth --csr),
installed from, or revoked. (default: None)
--key-path KEY_PATH Path to private key for certificate installation or
revocation (if account key is missing) (default: None)
--fullchain-path FULLCHAIN_PATH
Accompanying path to a full certificate chain
(certificate plus chain). (default: None)
--chain-path CHAIN_PATH
Accompanying path to a certificate chain. (default:
None)
--config-dir CONFIG_DIR
Configuration directory. (default: /etc/letsencrypt)
--work-dir WORK_DIR Working directory. (default: /var/lib/letsencrypt)
--logs-dir LOGS_DIR Logs directory. (default: /var/log/letsencrypt)
--server SERVER ACME Directory Resource URI. (default:
https://acme-v02.api.letsencrypt.org/directory)
Hosteurope

Certificate | fullchain.pem |
Key | privkey.pem |
Synology
Control Panel -> Security -> Certificate
Add -> Add new certificate -> Import certificate
Private Key | privkey.pem |
Certificate | fullchain.pem |