极简部署linux免费ssl证书Let‘s Encrypt，自动续签，nginx/apache都可以，域名指向服务器即可，无需项目

1、拉取最新的代码

git clone  https://gitee.com/neilpang/acme.sh.git

2、进入目录

cd  acme.sh

3、安装

./acme.sh  --install  -m  xxxx@qq.com 

xxxx@qq.com 切换自己邮箱

nginx 版本

4、 下载ssl证书

./acme.sh  --issue  -d admin-beta.xxx.com  --nginx /www/server/nginx/conf/nginx.conf

将 admin-beta.xxx.com 替换为自己的域名， /www/server/nginx/conf/nginx.conf 替换为 本地的nginx配置文件的路径

5、安装ssl证书

 ssl_certificate    /www/server/panel/vhost/cert/admin-beta.xxx.com/fullchain.pem;
 ssl_certificate_key    /www/server/panel/vhost/cert/admin-beta.xxx.com/privkey.pem;

./acme.sh --install-cert -d admin-beta.xxx.com --key-file /www/server/panel/vhost/cert/admin-beta.xxx.com/privkey.pem --fullchain-file /www/server/panel/vhost/cert/admin-beta.xxx.com/fullchain.pem --reloadcmd "service nginx reload" 

将 service nginx reload 替换 自己nginx的重启命令

apache 版本

4、 下载ssl证书

./acme.sh  --issue  -d admin-beta.xxx.com  --apache 

报错 可以设置

ln -s /usr/local/apache/bin/apachectl /usr/bin/apachectl

5、安装ssl证书

SSLCertificateFile /etc/ssl/admin-beta.xxx.com/admin-beta.xxx.com.crt
SSLCertificateKeyFile /etc/ssl/admin-beta.xxx.com/admin-beta.xxx.com.key
SSLCertificateChainFile /etc/ssl/admin-beta.xxx.com /root_bundle.crt

./acme.sh --install-cert -d admin-beta.xxx.com   --cert-file      /etc/ssl/admin-beta.xxx.com/admin-beta.xxx.com.crt   --key-file       /etc/ssl/admin-beta.xxx.com/admin-beta.xxx.com.key   --fullchain-file /etc/ssl/admin-beta.xxx.com /root_bundle.crt  --reloadcmd     "service httpd graceful" 

将 service httpd graceful 替换为 自己apache的重启命令

6、启动定时任务

/root/.acme.sh/acme.sh  --cron  --home  /root/.acme.sh/

7、自动更新acme

./acme.sh --upgrade --auto-upgrade