This shows you the differences between two versions of the page.

Link to this comparison view

Next revision
Previous revision
esxi_ssl [2019/12/08 17:48]
admin created
esxi_ssl [2020/02/21 12:04] (current)
Line 18: Line 18:
 <code> <code>
-sudo certbot certonly --dns-cloudflare --dns-cloudflare-credentials ~/cloudflare.ini -d example.com,*.example.com --preferred-challenges dns-01 --dry-run+sudo certbot certonly --dns-cloudflare --dns-cloudflare-credentials ~/cloudflare.ini 
 +-d example.com,*.example.com --preferred-challenges dns-01 --dry-run
 </code> </code>
 +# copy certs to ESXi host
 +# Importing Variables
 +status "Importing Variables"
 +# Read ESXiHost
 +input "Enter the FQDN for the certificate/host in host.domain.tld format" "ESXiHost"
 +# Read ESXiUser
 +input "Enter ESXi target admin username" "ESXiUser"
 +# Prompt user to confirm/enable SSH on ESXi target
 +pressanykey "Confirm/Enable SSH access on $ESXiHost."
 +# Check for existing ssh keys for esxi host
 +status "Checking for existing ssh keys for $ESXiHost"
 +# Backup existing SSL components on ESXi target
 +status "Backing up existing certificates on $ESXiHost"
 +time=$(date +%Y.%m.%d_%H:%M:%S)
 +ssh $ESXiUser@$ESXiHost "cp /etc/vmware/ssl/castore.pem /etc/vmware/ssl/castore.pem.back.$time"
 +ssh $ESXiUser@$ESXiHost "cp /etc/vmware/ssl/rui.crt /etc/vmware/ssl/rui.crt.back.$time"
 +ssh $ESXiUser@$ESXiHost "cp /etc/vmware/ssl/rui.key /etc/vmware/ssl/rui.key.back.$time"
 +# Copy letsencrypt cert to ESXi target
 +status "Coping letsencrypt cert to $ESXiHost"
 +sudo scp /etc/letsencrypt/live/$ESXiHost/fullchain.pem $ESXiUser@$ESXiHost:/etc/vmware/ssl/castore.pem
 +sudo scp /etc/letsencrypt/live/$ESXiHost/cert.pem $ESXiUser@$ESXiHost:/etc/vmware/ssl/rui.crt
 +sudo scp /etc/letsencrypt/live/$ESXiHost/privkey.pem $ESXiUser@$ESXiHost:/etc/vmware/ssl/rui.key
esxi_ssl.txt · Last modified: 2020/02/21 12:04 (external edit)
Driven by DokuWiki Recent changes RSS feed Valid CSS Valid XHTML 1.0