certbot

Install

   1 wget https://dl.eff.org/certbot-auto
   2 sudo mv certbot-auto /usr/local/bin/certbot-auto
   3 sudo chown root /usr/local/bin/certbot-auto
   4 sudo chmod 0755 /usr/local/bin/certbot-auto
   5 certbot-auto

Get cert to domain www.example.org (nginx)

   1 /usr/local/bin/certbot-auto certonly --webroot
   2 #Please enter in your domain name(s) (comma and/or space separated)  (Enter 'c'to cancel): www.example.org
   3 # - Congratulations! Your certificate and chain have been saved at:
   4 #   /etc/letsencrypt/live/www.example.org/fullchain.pem
   5 #   Your key file has been saved at:
   6 #   /etc/letsencrypt/live/www.example.org/privkey.pem
   7 cd /etc/letsencrypt/live/www.example.org/
   8 cat cert.pem  > www_ca_bundle.crt
   9 echo "" >> www_ca_bundle.crt 
  10 cat  chain.pem >> www_ca_bundle.crt
  11 cp privkey.pem /etc/ssl/private/www_private.key 
  12 cp www_ca_bundle.crt /etc/ssl/certs/www_ca_bundle.crt
  13 nano /etc/nginx/sites-enabled/www.example.org
  14 # ssl_certificate /etc/ssl/certs/www_ca_bundle.crt;
  15 # ssl_certificate_key /etc/ssl/private/www_private.key;
  16 # change paths ...
  17 service nginx restart