Parliament Hill Computers LtdParliament Hill Computers Ltd

Install of phcl_acme


Install & initial setup

  1. Download a copy of the latest LetsEncryptManage (tar file or rpm) & and extract the files
    • This should be extracted into a temporary work directory, eg: 
      # mkdir /tmp/x
# cd /tmp/x
# tar xzf /tmp/LetsEncryptManage-version.release-0.0.tar.gz
  2. Look at the installer bin/InitialSetup, especially the first few lines, check:
    • Are you happy with the 2 users that will be created? If not change RsaUser and AcmeUser
    • Are you happy with the directory that will be created? If not change AcmeHome. Note that this is a directory that Apache will access.
    • Check that the value of ApacheGroup — this does vary between systems
  3. Read the rest of the script — understand, in outline, what it does
  4. Run it as the user root, giving as argument the path to the tar file, eg: 
           # sh /tmp/x/bin/InitialSetup /tmp/LetsEncryptManage-version.release-0.0.tar.gz

    Check that nothing went wrong — did you see any errors ?.

    The scripts assume a reasonably capable shell, ksh and bash both work fine. ash (known as dash on Debian & Ubuntu) does not support the syntax used.

  5. Change to directory /var/www/acme/, have a look around.
  6. The tar file contains a copy of acme-tiny.py, however you might want to download a copy straight from the source: https://github.com/diafygi/acme-tiny
  7. You can now remove the temporary work directory and downloaded tar file, eg: 
           # rm -r /tmp/x/ /tmp/LetsEncryptManage-version.release-0.0.tar.gz


Next page: Understanding and generating OpenSSL.cnf files

Return to How to Configure Let's Encrypt with acme_tiny.py

Return to tutorial home.

If you want any help using the above, or have any comments or suggestions, please contact us.