Forrest logo
tool overview
On this page you find all important commands for the CLI tool certbot. If the command you are looking for is missing please ask our AI.

certbot

Certbot is an open-source command line tool developed by the Electronic Frontier Foundation (EFF) that automates the process of obtaining and renewing SSL/TLS certificates. It simplifies the task of setting up HTTPS encryption for websites by providing an easy-to-use interface. Certbot supports several web servers, including Apache and Nginx, making it a versatile tool across different platforms.

The tool interacts with the Let's Encrypt certificate authority, which provides free SSL certificates to enhance website security and enable HTTPS. Certbot automates the domain validation, certificate issuance, and installation process, eliminating the need for manual steps. It also handles the renewal of certificates, ensuring that websites maintain secure connections. Certbot offers different authentication methods, such as HTTP-01 and DNS-01 challenges, to verify domain ownership during certificate issuance.

Certbot includes a wide range of options and features like automatic redirection from HTTP to HTTPS, support for multiple domains and subdomains, and the ability to configure advanced SSL/TLS settings. It provides detailed logs and error messages to troubleshoot any issues that may arise during certificate installation or renewal. Certbot can also be integrated with other tools or scripts for custom automation workflows.

Certbot is actively maintained and has a vibrant community contributing to its development. It is available for various operating systems and has detailed documentation, making it accessible for users with different levels of technical expertise. The tool focuses on providing a user-friendly experience while ensuring that websites have secure and encrypted connections via SSL/TLS certificates.

List of commands for certbot:

  • certbot:tldr:68be1 certbot: Obtain a new certificate via apache authorization, installing the new certificate automatically.
    $ sudo certbot --apache --domain ${subdomain-example-com}
    try on your machine
    explain this command
  • certbot:tldr:80301 certbot: Obtain a new certificate via nginx authorization, installing the new certificate automatically.
    $ sudo certbot --nginx --domain ${subdomain-example-com}
    try on your machine
    explain this command
  • certbot:tldr:aa1dc certbot: Renew all Let's Encrypt certificates that expire in 30 days or less (don't forget to restart any servers that use them afterwards).
    $ sudo certbot renew
    try on your machine
    explain this command
  • certbot:tldr:cfdd1 certbot: Simulate the obtaining of a new certificate, but don't actually save any new certificates to disk.
    $ sudo certbot --webroot --webroot-path ${path-to-webroot} --domain ${subdomain-example-com} --dry-run
    try on your machine
    explain this command
  • certbot:tldr:d4613 certbot: Obtain an untrusted test certificate instead.
    $ sudo certbot --webroot --webroot-path ${path-to-webroot} --domain ${subdomain-example-com} --test-cert
    try on your machine
    explain this command
  • certbot:tldr:fa29e certbot: Obtain a new certificate via webroot authorization, but do not install it automatically.
    $ sudo certbot certonly --webroot --webroot-path ${path-to-webroot} --domain ${subdomain-example-com}
    try on your machine
    explain this command
tool overview