ISPConfig-letsencrypt icon indicating copy to clipboard operation
ISPConfig-letsencrypt copied to clipboard
verified publisher icon alexalouit

distributed environment

Open paulfriedrich opened this issue 10 years ago • 4 comments

How to deploy this in a distributed ISPconfig environment? Do I have to install it on every server? Only on the master server?

paulfriedrich avatar Dec 01 '15 15:12 paulfriedrich

I Haven't tested in a deployed environment, I suppose certificates must be synchronized via NFS sharing on all web nodes. ISPConfig don't do this job, as well as web data sync, this is our expense.

alexalouit avatar Dec 01 '15 16:12 alexalouit

It's working for my scenario:

despite the ChainFile issue #7 I was able to install LetsEncrypt + ISPConfig-LetsEncrypt on a headless (slave, no UI) ISPConfig. Changes made on the master ISPConfig Server were synchronized to slave ISPConfig server, than, the Certificates were created properly, .vhost files generated too.

WKnak avatar Dec 05 '15 14:12 WKnak

If you don't want to rsync certificates between servers, yes, you will need to install on any server, they need to create the table field too.

WKnak avatar Dec 05 '15 14:12 WKnak

For distributed environment, that's what I planned. ISPconfig do the same job, except he don't symlink certificat for copying it. And, for renew cert, there must be a cron job script that regenerates certificates, and replaces them in the folder ssl site.

alexalouit avatar Dec 05 '15 18:12 alexalouit