Reputation: 75
use a lets encrypt certificate for another service
I have a Lets Encrypt certificate which works on my Synology NAS using a DDNS name. I want to use the certificate for another service (ejabberd) on another machine (a Raspberry Pi), that would run under the same DDNS name, but on another port. I can download the certificate from the NAS resulting in three files:
- cert.pem (CERTIFICATE)
- chain.pem (CERTIFICATE)
- privkey.pem (RSA PRIVATE KEY)
ejbberd's configuration needs the certificate file in two places:
### ===============
### LISTENING PORTS
listen:
port:5222
[...]
certfile: "/etc/ejabberd/certfile.pem"
and
s2s_use_starttls: optional
s2s_certfile: "/etc/ejabberd/certfile.pem"
s2s_protocol_options:
- "no_sslv3"
I am not sure which file to use here. I had this working, but the certificate expired.
Upvotes: 0
Views: 180
Answers (1)
Reputation: 75
It could be done by cat cert.pem chain.pem privkey.pem > certfile.pem
Here is a description and also (under appendix) a description of the certfile format. https://www.process-one.net/blog/securing-ejabberd-with-tls-encryption/
Upvotes: 0
Related Questions
- How can I set up a letsencrypt SSL certificate and use it in a Spring Boot application?
- How do I setup https with a LetsEncrypt certificate?
- How do we use letsencrypt SSL certificates in an IoT architecture
- Can I get Letsencrypt certificate for local development
- Using letsencrypt to sign SSL certificates for local servers
- Can I use a Let's Encrypt certificate with my self-hosted WCF application?
- Let's Encrypt SSL certs for same domain, multiple instances
- Let's encrypt certificate with NO SNI
- How can I get Letsencrypt certificates before adding the server to production
- Generate a certificate with letsencrypt locally