Open paulfriedrich opened 8 years ago
I Haven't tested in a deployed environment, I suppose certificates must be synchronized via NFS sharing on all web nodes. ISPConfig don't do this job, as well as web data sync, this is our expense.
It's working for my scenario:
despite the ChainFile issue #7 I was able to install LetsEncrypt + ISPConfig-LetsEncrypt on a headless (slave, no UI) ISPConfig. Changes made on the master ISPConfig Server were synchronized to slave ISPConfig server, than, the Certificates were created properly, .vhost files generated too.
If you don't want to rsync certificates between servers, yes, you will need to install on any server, they need to create the table field too.
For distributed environment, that's what I planned. ISPconfig do the same job, except he don't symlink certificat for copying it. And, for renew cert, there must be a cron job script that regenerates certificates, and replaces them in the folder ssl site.
How to deploy this in a distributed ISPconfig environment? Do I have to install it on every server? Only on the master server?