Certbot: Difference between revisions
imported>Onny Add description summary about certbot |
imported>Onny Info about setting up read permissions |
||
| Line 19: | Line 19: | ||
If everthing went well you'll have the certificate and key file stored as <code>/etc/letsencrypt/live/example.org/fullchain.pem</code> and <code>/etc/letsencrypt/live/example.org/privkey.pem</code> | If everthing went well you'll have the certificate and key file stored as <code>/etc/letsencrypt/live/example.org/fullchain.pem</code> and <code>/etc/letsencrypt/live/example.org/privkey.pem</code> | ||
To make the keys readable by a third party user or application, you could set custom ACL permissions. In this example we grant the user <code>maddy</code> read permissions for the certificate folder: | |||
<syntaxhighlight lang="console"> | |||
# sudo setfacl -R -m u:maddy:rX /etc/letsencrypt/{live,archive} | |||
</syntaxhighlight> | |||