Pokud chcete, aby se certifikát pro webové rozhraní Proxmoxu generoval automaticky pomocí ACME. Použijte následující postup:
# pvenode acme account register default pan.uzivatel@example.org Directory endpoints: 0) Let's Encrypt V2 (https://acme-v02.api.letsencrypt.org/directory) 1) Let's Encrypt V2 Staging (https://acme-staging-v02.api.letsencrypt.org/directory) 2) Custom Enter selection: 2 Enter custom URL: https://acme-v02.harica.gr/acme/XXX/directory
Attempting to fetch Terms of Service from 'https://acme-v02.harica.gr/acme/XXX/directory'.. Terms of Service: https://repo.harica.gr/documents/SA-ToU.pdf Do you agree to the above terms? [y|N]: y The CA requires external account binding. You should have received a key id and a key from your CA. Enter EAB key id: XXX Enter EAB key: XXX Attempting to register account with 'https://acme-v02.harica.gr/acme/XXX/directory'.. Generating ACME account key.. Registering ACME account.. Registration successful, account URL: 'https://acme-v02.harica.gr/acme/XXX/acct/XXX' Task OK
# pvenode config set --acme domains=mujserver.example.org;alias1serveru.example.org
# pvenode acme cert order Loading ACME account details Placing ACME order Order URL: https://acme-v02.harica.gr/acme/XXX/order/XXX Getting authorization details from 'https://acme-v02.harica.gr/acme/XXX/authz/XXX/XXX' mujserver.example.org is already validated! All domains validated! Creating CSR Checking order status Order is ready, finalizing order still processing, trying again in 30 seconds valid! Downloading certificate Setting pveproxy certificate and key Restarting pveproxy Task OK
O automatickou obnovu už není potřeba se starat. Ověření potřeby nového certifikátu a případné obnovení Proxmox provádí automaticky každý den prostřednictví systemd služby pve-daily-update.timer.