GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → minio → Concert

minio / Concert

Licence: apache-2.0
Concert is a console based certificate generation tool for https://letsencrypt.org.

Programming Languages

go
31211 projects - #10 most used programming language

Labels

letsencryptssl-certificates

Projects that are alternatives of or similar to Concert

Rancher Letsencrypt
🐮 Rancher service that obtains and manages free SSL certificates from the Let's Encrypt CA
Stars: ✭ 318 (+62.24%)
Mutual labels:  letsencrypt, ssl-certificates
Ssl Proxy
🔒 Simple zero-config SSL reverse proxy with real autogenerated certificates (LetsEncrypt, self-signed, provided)
Stars: ✭ 427 (+117.86%)
Mutual labels:  letsencrypt, ssl-certificates
ght-acme.sh
Shell script to sign certificate by the letsencrypt CA
Stars: ✭ 31 (-84.18%)
Mutual labels:  letsencrypt, ssl-certificates
docker-nginx-certbot
Automatically create and renew website certificates for free using the Let's Encrypt certificate authority.
Stars: ✭ 367 (+87.24%)
Mutual labels:  letsencrypt, ssl-certificates
Certbot Route53
Helping create Let's Encrypt certificates for AWS Route53
Stars: ✭ 159 (-18.88%)
Mutual labels:  letsencrypt, ssl-certificates
Nginx Le
Nginx with automatic let's encrypt (docker image)
Stars: ✭ 475 (+142.35%)
Mutual labels:  letsencrypt, ssl-certificates
Certes
A client implementation for the Automated Certificate Management Environment (ACME) protocol
Stars: ✭ 357 (+82.14%)
Mutual labels:  letsencrypt, ssl-certificates
Rancher Lets Encrypt
Automatically create and manage certificates in Rancher using Let's Encrypt webroot verification via a minimal service
Stars: ✭ 88 (-55.1%)
Mutual labels:  letsencrypt, ssl-certificates
Docker Letsencrypt Certgen
Docker image to generate, renew, revoke RSA and/or ECDSA SSL certificates from LetsEncrypt CA using certbot and acme.sh clients in automated fashion
Stars: ✭ 64 (-67.35%)
Mutual labels:  letsencrypt, ssl-certificates
Certify
SSL Certificate Manager UI for Windows, powered by Let's Encrypt. Download from certifytheweb.com
Stars: ✭ 1,075 (+448.47%)
Mutual labels:  letsencrypt, ssl-certificates
Letscertbot
Let's Certbot is a tool builds automated scripts base on Certbot for obtaining, renewing, deploying SSL certificates.
Stars: ✭ 84 (-57.14%)
Mutual labels:  letsencrypt, ssl-certificates
Docker Nginx Gunicorn Flask Letsencrypt
Boilerplate code for setting up Nginx + Gunicorn + Flask + automated LetsEncrypt certificates (https) using docker-compose.
Stars: ✭ 117 (-40.31%)
Mutual labels:  letsencrypt, ssl-certificates
Acmetool
🔒 acmetool, an automatic certificate acquisition tool for ACME (Let's Encrypt)
Stars: ✭ 1,882 (+860.2%)
Mutual labels:  letsencrypt
Lets Nginx
Push button, get TLS
Stars: ✭ 171 (-12.76%)
Mutual labels:  letsencrypt
Netpwn
Tool made to automate tasks of pentesting.
Stars: ✭ 152 (-22.45%)
Mutual labels:  ssl-certificates
Openwebscrobbler
🎧 An open source web scrobbler for Last.fm
Stars: ✭ 148 (-24.49%)
Mutual labels:  letsencrypt
Letsencrypt Cpanel
cPanel/WHM plugin for Let's Encrypt client
Stars: ✭ 181 (-7.65%)
Mutual labels:  letsencrypt
Bunkerized Nginx
🛡️ Make your web services secure by default !
Stars: ✭ 2,361 (+1104.59%)
Mutual labels:  letsencrypt
Gitlab Ci Stack
Full CI pipeline project based on Gitlab & Gitlab CI running Docker, completely automated setup by Vagrant & Ansible, providing Let´s Encrypt certificates for private Servers, multiple Gitlab-Runners and the Gitlab Container Registry, incl. GitLab Pages
Stars: ✭ 146 (-25.51%)
Mutual labels:  letsencrypt
Docker Portainer Letsencrypt
Portainer docker container over SSL Certificate using Let's Encrypt automated by our webproxy docker-compose-letsencrypt-nginx-proxy
Stars: ✭ 141 (-28.06%)
Mutual labels:  letsencrypt
View All Similar Projects ➔

DEPRECATED - This project is deprecated and not maintained anymore. It is recommended all users use https://certbot.eff.org/ instead.

Concert Slack

Concert is a console based certificate generation tool for letsencrypt.org. Let’s Encrypt is a free (as in free beer), automated, and open certificate authority.

Prerequisite

  • A valid domain name purchased from any domain registrar.
  • root access to the server pointed by the domain name.
  • Working email address for the domain.

Download

We STRONGLY RECOMMEND installing concert from source, because it requires root access. Download pre-built binaries from here.

Compile from Source (RECOMMENDED)

We are assuming that you have installed golang already, run the following command to download and install concert from source.

go get -u github.com/minio/concert

How to generate a certificate?

To generate a certificate and key for example.com, run the following command on example.com server as root, under my-certs directory.

sudo concert gen --dir my-certs [email protected] example.com
sudo ls my-certs
certs.json public.crt private.key

NOTE: Generated certificates are valid only for a maximum of 90 days. Please visit the following link for more details - https://letsencrypt.org/2015/11/09/why-90-days.html

How to generate a certificate bundle for various sub domains?

To generate certificates for example.com and its sub domains ‘www’, ‘ftp’ and ‘mail’, use sub-domains command line option. You need to run this command as root on the example.com server.

sudo concert gen --sub-domains www,ftp,mail [email protected] example.com

Successfully generated bundled certs for sub domains ‘www’, ‘ftp’ and ‘mail’.

sudo ls certs
certs.json public.crt private.key

How to renew a certificate?

To renew a certificate for example.com under ‘certs’ directory. New certs are generated and saved in the same directory as before.

sudo concert renew [email protected]

How to automatically renew certificates?

You can run concert in server mode to automatically renew certificates, once in every 45 days.

sudo concert server --dir my-certs [email protected] example.com

How to automatically renew certificates for various sub domains?

To automatically renew cerificates for example.com and its sub domains ‘www’, ‘ftp’ and ‘mail’, use sub-domains command line option.

sudo concert server --sub-domains www,ftp,mail [email protected] example.com

FAQ

  • Why concert requires root access?

ACME protocol requires root access to verify authenticity of the domain ownership. During the certification generation phase, concert temporarily listens on port 80 or 443 to allow letsencrypt.org service connect and verify the ownership. Only root is allowed to bind to any port below 1024.

  • Can I run concert as non-root?

On GNU/Linux, it is possible to run as non-root by granting bind only access to concert.

sudo setcap cap_net_bind_service=+ep `which concert`
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].