Vesta Control Panel - Forum

Community Forum

Skip to content

Advanced search
  • Quick links
    • Main site
    • Github repo
    • Google Search
  • FAQ
  • Login
  • Register
  • Board index Main Section General Discussion
  • Search

How to setup a Let'sEncrypt hostname certificate for VestaCP, Exim, Dovecot...

General questions about VestaCP
Post Reply
  • Print view
Advanced search
2 posts • Page 1 of 1
Wibols
Posts: 21
Joined: Tue Jun 25, 2019 7:42 pm

Os: CentOS 6x
Web: apache + nginx
How to setup a Let'sEncrypt hostname certificate for VestaCP, Exim, Dovecot...
  • Quote

Post by Wibols » Sun Jun 30, 2019 2:45 pm

This process have been tested on a CentOS 7 VPS, but should to work in others distros. In this example, we will use mail.domain.tld as our server hostname, but can be any other.
Under "VestaCP/Web/+" we create the mail.domain.tld subdomain. The only needed option is "SSL/Let'sEncript". DNS Support, Mail Support, Aliases, Proxy can be removed/unmarked.
To do the above, we can also use:

Code: Select all

ssh [email protected]
/usr/local/vesta/bin/v-add-domain USER DOMAIN [IP] [RESTART]
/usr/local/vesta/bin/v-add-letsencrypt-domain USER DOMAIN [ALIASES] [RESTART] [NOTIFY]
This empty web subdomain is required on every Let'sEncrypt verification process. Don't remove.
We wait for a few minutes while certificate is issued. We can check it in "VestaCP/Web/mail.domain.tld/SSL Support: Lets encrypt" info panel. Use "F5" for refresh.

Now we need to setup the system hostname for our server, verify it and a reboot is required:

Code: Select all

ssh [email protected]
hostnamectl set-hostname mail.domain.tld
hostnamectl
reboot
We update the VestaCP host certificate:

Code: Select all

ssh [email protected]
/usr/local/vesta/bin/v-update-host-certificate 'admin' $HOSTNAME
From this moment, we will need to use https://mail.domain.tld:8083/ to enter the control panel.
We add the line "UPDATE_HOSTNAME_SSL='yes'" to "/usr/local/vesta/conf/vesta.conf" file for certificate autoupdate:

Code: Select all

echo "UPDATE_HOSTNAME_SSL='yes'" >> /usr/local/vesta/conf/vesta.conf
Don't forget to point your "PTR record" (reverse DNS) to "mail.domain.tld" in your VPS control panel. This step is important to legitimize your mail.
System, VestaCP, SMTP and IMAP/POP3 host names must be the same and match with certificate (CN) field and PTR record in DNS zone to avoid mail problems.
Top

resif
Posts: 6
Joined: Thu Sep 28, 2017 2:13 pm

Re: How to setup a Let'sEncrypt hostname certificate for VestaCP, Exim, Dovecot...
  • Quote

Post by resif » Sun Jan 03, 2021 10:08 pm

hello

i want to make this settings for gmail export my info mails...
bcos for gmail ssl connect i need to make my hostname secure...
with this settings is this posibble...
Don't forget to point your "PTR record" (reverse DNS) to "mail.domain.tld" in your VPS control panel. This step is important to legitimize your mail.
and i dont know how to make this... thank you
Top


Post Reply
  • Print view

2 posts • Page 1 of 1

Return to “General Discussion”



  • Board index
  • All times are UTC
  • Delete all board cookies
  • The team
Powered by phpBB® Forum Software © phpBB Limited
*Original Author: Brad Veryard
*Updated to 3.2 by MannixMD
 

 

cron

Login  •  Register

I forgot my password