directadmin manual ssl using cmd

 To generate an SSL certificate for a domain using letsencrypt.sh (now commonly known as acme.sh) in DirectAdmin, follow these steps:


/usr/local/directadmin/data/users/ajayuser/domains



step-by-Step Guide:

Access the Server via SSH:



ssh root@your_server_ip

Install acme.sh:

Install acme.sh if it is not already installed. You can install it using the following command:



curl https://get.acme.sh | sh

Issue an SSL Certificate for Your Domain:

You need to set up the necessary environment variables for DirectAdmin and then issue the certificate. Here's how:


a. Export Environment Variables:



export DP_Id="your_directadmin_username"

export DP_Key="your_directadmin_api_key"


b. Generate the Certificate:

Use acme.sh to generate the certificate for your domain. Replace yourdomain.com with your actual domain and www.yourdomain.com with any subdomain if needed:



Issue the Certificate Using DNS Method:


/root/.acme.sh/acme.sh --issue --dns dns_dp -d ajayferocast.com -d www.ajayferocast.com




/root/.acme.sh/acme.sh --register-account -m support@drushti.in




[root@linux2 mnt]# /root/.acme.sh/acme.sh --register-account -m support@drushti.in

[Wed Jul 24 21:24:57 IST 2024] No EAB credentials found for ZeroSSL, let's obtain them

[Wed Jul 24 21:24:58 IST 2024] Registering account: https://acme.zerossl.com/v2/DV90


[Wed Jul 24 21:24:59 IST 2024] Registered

[Wed Jul 24 21:24:59 IST 2024] ACCOUNT_THUMBPRINT='KZA3KZHlt4NviPtmFHxcM-RyWc8UQMUItqyEPiBVonw'



/usr/local/directadmin/data/users/admin



vi user.conf


login_keys=ON


http://192.227.108.55:2222/CMD_LOGIN_KEYS?redirect=yes



export DP_Id="admin"

export DP_Key="bumkailashkumar"



Issue the Certificate Using Webroot Method:


/root/.acme.sh/acme.sh --issue --webroot -d /home/ajayuser/public_html/ ajayferocast.com -d www.ajayferocast.com




Install the Certificate in DirectAdmin:

After the certificate is issued, install it in DirectAdmin.



/root/.acme.sh/acme.sh --install-cert -d ajayferocast.com \

--cert-file /usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.cert \

--key-file /usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.key \

--ca-file /usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.cacert \

--fullchain-file /usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.fullchain \

--reloadcmd "service directadmin restart"

Replace ajayuser with the DirectAdmin username associated with the domain.


Configure DirectAdmin to Use the Certificate:

Edit the SSL configuration file for your domain to use the generated certificate files.



nano /usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.ssl

Ensure the file contains the correct paths:



SSLCertificateFile=/usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.cert

SSLCertificateKeyFile=/usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.key

SSLCACertificateFile=/usr/local/directadmin/data/users/ajayuser/domains/ajayferocast.com.cacert

Restart DirectAdmin and Web Server:

Restart DirectAdmin and the web server to apply the changes.



service directadmin restart

service httpd restart  # for Apache web server

# or

service nginx restart  # for Nginx web server

Automated Renewal

To ensure the certificates are renewed automatically, you can set up a cron job.



/root/.acme.sh/acme.sh --install-cronjob

This will install the cron job for automatic renewal.


By following these steps, you can issue and install an SSL certificate for your domain using the webroot method with acme.sh in DirectAdmin.








Comments

Post a Comment

Popular posts from this blog

cpanel exam CPSP Answers

 Which of the following options best describes the role of Shared Hosting on a web server? Providing hosting for a single website owned by different people on multiple servers. Providing hosting for a single website owned by one person on one server. Providing hosting for multiple websites owned by different people on one server. Providing hosting for multiple websites owned by one person on one server. 3 Which of the following capabilities can a cPanel account user perform easily from within the cPanel account interface without the aid of a system administrator? File and configuration management. Relocating the physical server. Upgrading server hardware and equipment. Installing new database software. 1 File and configuration management. Which of the following options best describes a core benefit to using cPanel & WHM, as a web hosting provider operating on a cPanel & WHM environment? cPanel users are able to create new virtualization resources to help host their web applicat
Read more

How to install zimbra collaboration suite 8.8.11 on CentOS 7

Check system requirements  https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0/Single_Server_Installation#System_Requirements prerequisites Before we get started, here are a few things that are required before we proceed with the installation. A clean installation of Centos 7 A Fully Qualified Domain (FQDN) for your server(Example mail.geekybum.com) An external DNS server with both A and MX records for your server to point to your Zimbra mail server IP Address A static IP Address assigned to network interface. Step 1: Root login to server through SSH Step 2: Install required packages for zimbra coloboration suite installation yum -y install unzip net-tools sysstat openssh-clients perl-core libaio nmap-ncat libstdc++.so Initial server setup To get started we need to configure a hostname for our server and a static IP address. vi /etc/hosts 135.125.30.56 mail.geekybum.com mail Replace the system hostname and FQDN values accordingly in order to match your own do
Read more

awstats installation

Set Up AWStats for Nginx on Ubuntu sudo apt-get install awstats add access log file to generate stats using this server { # ... all your other config ... access_log /var/log/nginx/yourdomain.com.access.log ; # ... all your other config ... } /etc/nginx/sites-available vi awstats.parleproducts.com.conf cd /etc/awstats/ vi awstats.parleproducts.com.conf #path to your nginx log file LogFile="/var/log/nginx/parleproducts.com.access.log" # Domain of your vhost SiteDomain="parleproducts.com" # Directory where to store the awstats data DirData="/var/lib/awstats/" # Other domains/subdomain you want included from your logs, for example the www subdomain HostAliases="www.parleproducts.com" # If you customized your log format above add this line: LogFormat = ""%host %other %logname %time1 %methodurl %code %bytesd %refererquot %uaquot"" # If you did not, uncomment and use this line: #
Read more