Using Let’s Encrypt (beta) with Vesta Control Panel

https://docs.google.com/document/d/1y5tTtImTGk_zqYe3lelGtMl8_gSCQcNgCCdbYTQAb7E/edit#heading=h.fc0utsgks117

./letsencrypt-auto certonly -a webroot –renew-by-default –agree-dev-preview –server https://acme-v01.api.letsencrypt.org/directory –webroot-path /home/admin/web//public_html -d

other way:

./letsencrypt-auto –server https://acme-v01.api.letsencrypt.org/directory \
  –renew-by-default \
  -a webroot –webroot-path [PATH_TO_APP_WEBROOT] –email [EMAIL] –text \
  –agree-tos –agree-dev-preview -d [DOMAIN_NAME] auth

Super Important  now open not need to do

https://docs.google.com/forms/d/15Ucm4A20y2rf9gySCTXD6yoLG6Tba7AwYgglV7CKHmM/viewform?edit_requested=true

Super Important2

open pem file, copy inside data put in vestacp…………..no put path/file

SO Wait for Let’s Encrypt OPEN~~~

=====renew=====
 ./letsencrypt-auto renew

1、If   /etc/letsencrypt/archive//  have  new file:cert2.pem 、 chain2.pem、fullchain2.pem 、privkey2.pem then

check  /etc/letsencrypt/live//  If link is new file, the mean

ln -s /etc/letsencrypt/live//fullchain.pem /home/admin/conf/web/ssl..pem
ln -s /etc/letsencrypt/live//privkey.pem /home/admin/conf/web/ssl..key
ln -s /etc/letsencrypt/live//cert.pem /home/admin/conf/web/ssl..crt
ln -s /etc/letsencrypt/live//chain.pem /home/admin/conf/web/ssl..ca

this no use.

2、put new file:cert2.pem 、 chain2.pem、fullchain2.pem 、privkey2.pem to vestacp SSL Support again

SSL Certificate   =  cert2.pem
SSL Key  =  privkey2.pem
SSL Certificate Authority / Intermediate (optional)  = chain2.pem

3、restart apache and nginx then ok~~~