zlb icon indicating copy to clipboard operation
zlb copied to clipboard

Published 20 hours ago verified publisher icon zevenet

let's encrypt for zevenet CE?

Open mikt opened this issue 3 years ago • 9 comments

Hi, Are there any plans for introducing letsencryptz (https://www.zevenet.com/knowledge-base/howtos/how-to-use-lets-encrypt-ssl-certificates-for-https-farms/) into the Community Edition? I see it has been in enterprise for over a year now?

And if not, is there a guide with a more manual process for how to use let's encrypt?

mikt avatar Aug 01 '20 20:08 mikt

Hello and sorry for bad english. I wrote a script. and working good with service restart. steps:

  1. Once obtain an ssl for your site. rename it foo.pem and import in zevenet via gui. configure your ssl farm with this certificate.
  2. install certbot. use it standalone mode for your ssl. certbot --standalone
  3. use following script and schedule it with crontab.
#!/bin/bash

/etc/init.d/zevenet stop
certbot -q renew
cat /etc/letsencrypt/live/<YOUR_SITE>/privkey.pem /etc/letsencrypt/live/<YOUR_SITE>/fullchain.pem > foo.pem
mv foo.pem /usr/local/zevenet/config/certificates/foo.pem -f
/etc/init.d/zevenet start

rizaemet avatar Oct 18 '20 16:10 rizaemet

You don't need to stop zevenet entirely, I would recommend to use zcli just to restart the farms that are using already renewed certificates.

Already renewed certificates can be obtained of certbot output. zcli can show you all the http(s) farms and you can loop them in order to check which certificates they are using.

my proposal is longer script but more efficient after all.

Thanks!

El dom., 18 oct. 2020 a las 18:31, Rıza Emet ([email protected]) escribió:

Hello and sorry for bad english. I wrote a script. and working good with service restart. steps:

  1. Once obtain an ssl for your site. rename it foo.pem and import in zevenet via gui. configure your ssl farm with this certificate.
  2. install certbot. use it standalone mode for your ssl. certbot --standalone
  3. use following script and schedule it with crontab.

#!/bin/bash

/etc/init.d/zevenet stop certbot -q renew cat /etc/letsencrypt/live/<YOUR_SITE>/privkey.pem /etc/letsencrypt/live/<YOUR_SITE>/fullchain.pem > foo.pem mv foo.pem /usr/local/zevenet/config/certificates/foo.pem -f /etc/init.d/zevenet start

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-711277274, or unsubscribe https://github.com/notifications/unsubscribe-auth/AFBQEPCSHH3IHXDXGC3BPLLSLMJ6VANCNFSM4PSBBYIA .

-- Emilio CamposZEVENET Teamwww.zevenet.com https://www.linkedin.com/company/zevenet https://twitter.com/zevenet https://www.facebook.com/zevenet https://github.com/zevenet [image: ZEVENET] https://www.zevenet.com/signature/

DISCLAIMER: This message contains confidential information and is intended only for the individual named. If you are not the named addressee please notify the sender immediately by email if you have received it by mistake and delete it from your system, you should not disseminate, distribute or copy this email in whole or in part.

emiliocampos-zevenet avatar Oct 19 '20 06:10 emiliocampos-zevenet

Let's encrypt will be included in ZEVENET CE 5.12, released on 20th december regarding the newsletter

forum4cc avatar Oct 22 '21 11:10 forum4cc

Hello, when it's going to be available the 5.12 version?

georgeemr avatar Dec 27 '21 23:12 georgeemr

Good day, we are currently working on EE version, as soon as it is released we will work on the new CE release based on the EE. It is taking more time than expected, sorry for the delay.

Regards

El mar, 28 dic 2021 a las 0:10, George Universe @.***>) escribió:

Hello, when it's going to be available the 5.12 version?

— Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-1001793355, or unsubscribe https://github.com/notifications/unsubscribe-auth/AFBQEPCMQHQS6TG37TBZST3UTDW45ANCNFSM4PSBBYIA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.

You are receiving this because you commented.Message ID: @.***>

-- Emilio CamposZEVENET Teamwww.zevenet.com

Review ZEVENET Product at Gartner Insights https://gtnr.io/LfXtqnsSr https://www.linkedin.com/company/zevenet https://twitter.com/zevenet https://www.facebook.com/zevenet https://github.com/zevenet [image: ZEVENET] https://www.zevenet.com/signature/

DISCLAIMER: This message contains confidential information and is intended only for the individual named. If you are not the named addressee please notify the sender immediately by email if you have received it by mistake and delete it from your system, you should not disseminate, distribute or copy this email in whole or in part.

emiliocampos-zevenet avatar Dec 28 '21 08:12 emiliocampos-zevenet

Hi @emiliocampos-zevenet,

Are there any plans to include support for Let's Encrypt with DNS-01 challenge anytime soon on CE? I just deployed a 5.12 Zevenet instance but it only supports HTTP challenges, right?

Regards,

elg0ch0 avatar Aug 26 '22 15:08 elg0ch0

Hi, Right, ZEVENET CE only supports letsencrypt integration with HTTP challenges, there is not any ETA for DNS integration.

Regards!

El vie, 26 ago 2022 a las 17:18, elg0ch0 @.***>) escribió:

Hi @emiliocampos-zevenet https://github.com/emiliocampos-zevenet,

Are there any plans to include support for Let's Encrypt with DNS-01 challenge anytime soon on CE? I just deployed a 5.12 Zevenet instance but it only supports HTTP challenges, right?

Regards,

— Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-1228626173, or unsubscribe https://github.com/notifications/unsubscribe-auth/AFBQEPG2UPEBXC3UHDZLVOTV3DN4ZANCNFSM4PSBBYIA . You are receiving this because you were mentioned.Message ID: @.***>

-- Emilio CamposZEVENET Teamwww.zevenet.com

Review ZEVENET Product at Gartner Insights https://gtnr.io/LfXtqnsSr https://www.linkedin.com/company/zevenet https://twitter.com/zevenet https://www.facebook.com/zevenet https://github.com/zevenet [image: ZEVENET] https://www.zevenet.com/signature/

DISCLAIMER: This message contains confidential information and is intended only for the individual named. If you are not the named addressee please notify the sender immediately by email if you have received it by mistake and delete it from your system, you should not disseminate, distribute or copy this email in whole or in part.

emiliocampos-zevenet avatar Aug 29 '22 06:08 emiliocampos-zevenet

What about Enterprise? Is DNS-01 challenge supported?

Regards,

On Mon., Aug. 29, 2022, 02:51 Emilio Campos, @.***> wrote:

Hi, Right, ZEVENET CE only supports letsencrypt integration with HTTP challenges, there is not any ETA for DNS integration.

Regards!

El vie, 26 ago 2022 a las 17:18, elg0ch0 @.***>) escribió:

Hi @emiliocampos-zevenet https://github.com/emiliocampos-zevenet,

Are there any plans to include support for Let's Encrypt with DNS-01 challenge anytime soon on CE? I just deployed a 5.12 Zevenet instance but it only supports HTTP challenges, right?

Regards,

— Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-1228626173, or unsubscribe < https://github.com/notifications/unsubscribe-auth/AFBQEPG2UPEBXC3UHDZLVOTV3DN4ZANCNFSM4PSBBYIA

. You are receiving this because you were mentioned.Message ID: @.***>

-- Emilio CamposZEVENET Teamwww.zevenet.com

Review ZEVENET Product at Gartner Insights https://gtnr.io/LfXtqnsSr https://www.linkedin.com/company/zevenet https://twitter.com/zevenet https://www.facebook.com/zevenet https://github.com/zevenet [image: ZEVENET] https://www.zevenet.com/signature/

DISCLAIMER: This message contains confidential information and is intended only for the individual named. If you are not the named addressee please notify the sender immediately by email if you have received it by mistake and delete it from your system, you should not disseminate, distribute or copy this email in whole or in part.

— Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-1229852342, or unsubscribe https://github.com/notifications/unsubscribe-auth/AHMU546GI5PMRH4RADDDHN3V3RMVRANCNFSM4PSBBYIA . You are receiving this because you commented.Message ID: @.***>

elg0ch0 avatar Aug 29 '22 10:08 elg0ch0

Yes, EE supports DNS01-challenge but for wildcard but each update requires a manual change in DNS, the process is not totally automated.

Regards

El lun, 29 ago 2022 a las 12:54, elg0ch0 @.***>) escribió:

What about Enterprise? Is DNS-01 challenge supported?

Regards,

On Mon., Aug. 29, 2022, 02:51 Emilio Campos, @.***> wrote:

Hi, Right, ZEVENET CE only supports letsencrypt integration with HTTP challenges, there is not any ETA for DNS integration.

Regards!

El vie, 26 ago 2022 a las 17:18, elg0ch0 @.***>) escribió:

Hi @emiliocampos-zevenet https://github.com/emiliocampos-zevenet,

Are there any plans to include support for Let's Encrypt with DNS-01 challenge anytime soon on CE? I just deployed a 5.12 Zevenet instance but it only supports HTTP challenges, right?

Regards,

— Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-1228626173, or unsubscribe <

https://github.com/notifications/unsubscribe-auth/AFBQEPG2UPEBXC3UHDZLVOTV3DN4ZANCNFSM4PSBBYIA

. You are receiving this because you were mentioned.Message ID: @.***>

-- Emilio CamposZEVENET Teamwww.zevenet.com

Review ZEVENET Product at Gartner Insights https://gtnr.io/LfXtqnsSr https://www.linkedin.com/company/zevenet https://twitter.com/zevenet https://www.facebook.com/zevenet https://github.com/zevenet [image: ZEVENET] https://www.zevenet.com/signature/

DISCLAIMER: This message contains confidential information and is intended only for the individual named. If you are not the named addressee please notify the sender immediately by email if you have received it by mistake and delete it from your system, you should not disseminate, distribute or copy this email in whole or in part.

— Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-1229852342, or unsubscribe < https://github.com/notifications/unsubscribe-auth/AHMU546GI5PMRH4RADDDHN3V3RMVRANCNFSM4PSBBYIA

. You are receiving this because you commented.Message ID: @.***>

— Reply to this email directly, view it on GitHub https://github.com/zevenet/zlb/issues/83#issuecomment-1230123378, or unsubscribe https://github.com/notifications/unsubscribe-auth/AFBQEPCGXI5XMEDDSQ4ZPSLV3SJIDANCNFSM4PSBBYIA . You are receiving this because you were mentioned.Message ID: @.***>

-- Emilio CamposZEVENET Teamwww.zevenet.com

Review ZEVENET Product at Gartner Insights https://gtnr.io/LfXtqnsSr https://www.linkedin.com/company/zevenet https://twitter.com/zevenet https://www.facebook.com/zevenet https://github.com/zevenet [image: ZEVENET] https://www.zevenet.com/signature/

DISCLAIMER: This message contains confidential information and is intended only for the individual named. If you are not the named addressee please notify the sender immediately by email if you have received it by mistake and delete it from your system, you should not disseminate, distribute or copy this email in whole or in part.

emiliocampos-zevenet avatar Aug 29 '22 11:08 emiliocampos-zevenet