Vesta Control Panel - Forum

Community Forum

Skip to content

Advanced search
  • Quick links
    • Main site
    • Github repo
    • Google Search
  • FAQ
  • Login
  • Register
  • Board index Main Section General Discussion
  • Search

HTTPS Vesta 0.9.8

General questions about VestaCP
Post Reply
  • Print view
Advanced search
7 posts • Page 1 of 1
wodCZ
Posts: 7
Joined: Fri Jun 05, 2015 2:52 pm

HTTPS Vesta 0.9.8
  • Quote

Post by wodCZ » Fri Feb 12, 2016 9:40 am

Hello,

I've created little gist, which would help you getting https ready.

Link: https://gist.github.com/wodCZ/12f230bf670a3e84d3c7

It contains LetsEncrypt scripts and updated Force-https template. While not totally automatic, it helps a lot (cca 30 seconds to enable https and setup auto renew).

Comment on gist please, as I don't come here regularly.
Top
mehargags
Support team
Posts: 1096
Joined: Sat Sep 06, 2014 9:58 pm
Contact:
Contact mehargags
Website Skype

Os: Debian 8x
Web: apache + nginx
Re: HTTPS Vesta 0.9.8
  • Quote

Post by mehargags » Fri Feb 12, 2016 6:11 pm

Can we install a free LetsEncrypt SSL for the control panel itself ? like I open https://VestacpIP:8083 to be secured under the free SSl ?

please advise
Top
pandabb
Posts: 192
Joined: Sat Aug 08, 2015 3:03 am

Re: HTTPS Vesta 0.9.8
  • Quote

Post by pandabb » Sat Feb 13, 2016 9:51 am

@mecha Yes you can do that, im using letsencrypt to my hostname but i registered my tld first then subdomain.
Top
wodCZ
Posts: 7
Joined: Fri Jun 05, 2015 2:52 pm

Re: HTTPS Vesta 0.9.8
  • Quote

Post by wodCZ » Sun Feb 14, 2016 9:27 pm

mehargags wrote:Can we install a free LetsEncrypt SSL for the control panel itself ? like I open https://VestacpIP:8083 to be secured under the free SSl ?

please advise
I've generated certs for my domain (ikw.cz) and then symlinked fullchain.pem a privkey.pem to /usr/local/vesta/certificate.crt and certificate.key.

Warning: replacing vesta certificates will affect exim and other services. As I don't use them, I can't tell if this will break your mails or not!

Something like this should do the job:

Code: Select all

mv /usr/local/vesta/certificate.crt /usr/local/vesta/certificate.crt.old
mv /usr/local/vesta/certificate.key /usr/local/vesta/certificate.key.old
ln -s /etc/letsencrypt/live/ikw.cz/fullchain.pem /usr/local/vesta/certificate.crt
ln -s /etc/letsencrypt/live/ikw.cz/privkey.pem /usr/local/vesta/certificate.key
service vesta restart
Last edited by wodCZ on Sun Feb 14, 2016 9:46 pm, edited 1 time in total.
Top
wodCZ
Posts: 7
Joined: Fri Jun 05, 2015 2:52 pm

Re: HTTPS Vesta 0.9.8
  • Quote

Post by wodCZ » Sun Feb 14, 2016 9:29 pm

I'm thinking about creating plugin for this, but didn't have time to look at Vesta plugin API, if sth like that exists.
Will have a look at that in this week probably.
Top
petron
Posts: 10
Joined: Wed Oct 01, 2014 9:13 pm

Re: HTTPS Vesta 0.9.8
  • Quote

Post by petron » Fri Dec 22, 2017 1:25 am

How to renew
/usr/local/vesta/ssl/certificate.crt and .key
files when you use the VestaCP with IP address and not domain name like 1.2.3.4:8083 ?
Top
ScIT
Support team
Posts: 617
Joined: Mon Feb 23, 2015 4:13 pm

Os: Ubuntu 17x
Web: apache + nginx
Re: HTTPS Vesta 0.9.8
  • Quote

Post by ScIT » Fri Dec 22, 2017 8:33 am

petron wrote:How to renew
/usr/local/vesta/ssl/certificate.crt and .key
files when you use the VestaCP with IP address and not domain name like 1.2.3.4:8083 ?
lets encrypt does not work with public ips, you need to have a domain for the controlpanel. but this can be also a subdomain. then you can also use this script here to get the cert working: http://forum.vestacp.com/viewtopic.php?f=19&t=13057
Top
Post Reply
  • Print view
7 posts • Page 1 of 1

Return to “General Discussion”



  • Board index
  • All times are UTC
  • Delete all board cookies
  • The team
Powered by phpBB® Forum Software © phpBB Limited
*Original Author: Brad Veryard
*Updated to 3.2 by MannixMD
 

 

Login  •  Register

I forgot my password