[root@tencent ~]# certbot certonly --webroot --agree-tos --no-eff-email --email xxxxxxx@qq.com -w /var/www/letsencrypt -d www.example.com ERROR: ld.so: object '/$LIB/libonion.so' from /etc/ld.so.preload cannot be preloaded (cannot open shared object file): ignored. Saving debug log to /var/log/letsencrypt/letsencrypt.log Account registered. Requesting a certificate for www.example.com
Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/www.example.com/fullchain.pem # 证书保存位置 Key is saved at: /etc/letsencrypt/live/www.example.com/privkey.pem # 私玥保存位置 This certificate expires on 2022-11-07. These files will be updated when the certificate renews. Certbot has set up a scheduled task to automatically renew this certificate in the background.
[root@VM-xVO5pN310rIk ~]# certbot certonly --manual -d '*.chilisdy.site' Saving debug log to /var/log/letsencrypt/letsencrypt.log Renewing an existing certificate for *.chilisdy.site
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Please deploy a DNS TXT record under the name:
_acme-challenge.chilisdy.site.
with the following value:
uTJNjsiQBnd_Lhaj0mALRr7MICvInBSyuc-Wi7iOObw
Before continuing, verify the TXT record has been deployed. Depending on the DNS provider, this may take some time, from a few seconds to multiple minutes. You can check if it has finished deploying with aid of online tools, such as the Google Admin Toolbox: https://toolbox.googleapps.com/apps/dig/#TXT/_acme-challenge.chilisdy.site. Look for one or more bolded line(s) below the line ';ANSWER'. It should show the value(s) you've just added. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Press Enter to Continue Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/chilisdy.site/fullchain.pem Key is saved at: /etc/letsencrypt/live/chilisdy.site/privkey.pem This certificate expires on 2023-03-19. These files will be updated when the certificate renews. NEXT STEPS: - This certificate will not be renewed automatically. Autorenewal of --manual certificates requires the use of an authentication hook script (--manual-auth-hook) but one was not provided. To renew this certificate, repeat this same certbot command before the certificate's expiry date.
WARNING: Before continuing, ensure that the listed certificates are not being used by any installed server software (e.g. Apache, nginx, mail servers). Deleting a certificate that is still being used will cause the server software to stop working. See https://certbot.org/deleting-certs for information on deleting certificates safely.
Are you sure you want to delete the above certificate(s)? - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - (Y)es/(N)o: y Deleted all files relating to certificate chilisdy.site. [root@tencent conf.d]#
[root@tencent ~]# certbot certonly --standalone --agree-tos --no-eff-email --email xxxxx@qq.com -d demo1.example.site -d demo2.example.site ERROR: ld.so: object '/$LIB/libonion.so' from /etc/ld.so.preload cannot be preloaded (cannot open shared object file): ignored. Saving debug log to /var/log/letsencrypt/letsencrypt.log Requesting a certificate for demo1.example.site and demo2.example.site
Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/demo1.example.site/fullchain.pem Key is saved at: /etc/letsencrypt/live/demo1.example.site/privkey.pem This certificate expires on 2022-11-07. These files will be updated when the certificate renews. Certbot has set up a scheduled task to automatically renew this certificate in the background.
[root@tencent conf.d]# certbot certonly --manual --preferred-challenges dns -d "*.chilisdy.site" ERROR: ld.so: object '/$LIB/libonion.so' from /etc/ld.so.preload cannot be preloaded (cannot open shared object file): ignored. Saving debug log to /var/log/letsencrypt/letsencrypt.log Requesting a certificate for *.chilisdy.site
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Please deploy a DNS TXT record under the name:
_acme-challenge.chilisdy.site.
with the following value:
4ate8hXZYsFJkZMB0CZBOd9iy3bV73BGMnpusMUgrHA
Before continuing, verify the TXT record has been deployed. Depending on the DNS provider, this may take some time, from a few seconds to multiple minutes. You can check if it has finished deploying with aid of online tools, such as the Google Admin Toolbox: https://toolbox.googleapps.com/apps/dig/#TXT/_acme-challenge.chilisdy.site. Look for one or more bolded line(s) below the line ';ANSWER'. It should show the value(s) you've just added. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Press Enter to Continue
Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/chilisdy.site/fullchain.pem Key is saved at: /etc/letsencrypt/live/chilisdy.site/privkey.pem This certificate expires on 2022-11-07. These files will be updated when the certificate renews.
NEXT STEPS: - This certificate will not be renewed automatically. Autorenewal of --manual certificates requires the use of an authentication hook script (--manual-auth-hook) but one was not provided. To renew this certificate, repeat this same certbot command before the certificate's expiry date. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - If you like Certbot, please consider supporting our work by: * Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate * Donating to EFF: https://eff.org/donate-le - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - [root@tencent conf.d]#