![]() ![]() Two, you could use the DNS-based clients, for which you need some way to change DNS entries related to the name you control from a program, e.g. If it’s easier with port 80 for whatever reason you need to ask forĬertbot -standalone -d -d -standalone-supported-challenges http-01 If you can open up port 443 for certbot to use, you’ll want something like this to get and as the names of the serverĬertbot -standalone -d -d -standalone-supported-challenges tls-sni-01 If you can’t or won’t allow access to these web ports from the Internet (after all this is an FTP server) then this is not an option. It needs for this server to be accessible from the Internet, using the name you want a certificate for, on either port 80 (HTTP) or port 443 (HTTPS). One, you could use Certbot’s standalone mode, in which it briefly acts as a web server. You can prove this one of three ways, but for your scenario there are basically two approaches. ![]() Let’s Encrypt only issues certificates to subscribers who can prove they control the names they want on the certificate. So, there are two separate elements, firstly you need to get Let’s Encrypt to issue you with certificates for the names you want (public Internet FQDNs for the FTPS server), then you need to configure ProFTPD to provide this certificate to clients when they connect. You’re welcome to use one, but if you don’t have one already it’s not necessary, the software can conjure one anyway. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |