Let's encrypt for webserver
NewHi All
I think it will be very nice if NX supports let's encrypt in the webserver for validating and having a valid Auto renewing certificate
-
While an integrated solution would be very nice and hopefully one day we get that, this is easily doable now. Unsure if you are on Windows or Linux but for linux install acme.sh (https://github.com/acmesh-official/acme.sh) and your select your validation method (DNS-01 challenge is likely the best option) and then for the Reload Cmd I use:
Le_ReloadCmd=cat $CERT_KEY_PATH $CERT_FULLCHAIN_PATH > /opt/networkoptix/mediaserver/var/ssl/cert.pem && systemctl restart networkoptix-mediaserver.service
It would be great to be able to do a -HUP or reload of media server to get the new cert but as far as I'm aware it's a restart only. I've been using this for a couple of years without issue. There are windows ports of acme.sh available so I suspect without much effort you could also adapt this for Windows.
Please sign in to leave a comment.
Comments
2 comments