40_Certificate_files.md 963 Bytes
Newer Older
Hahn Axel (hahn)'s avatar
Hahn Axel (hahn) committed
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
# Files of a Certificate


The acme client recommends not to use the acme storage directly but to copy 
the needed files into a wanted structure.

After issue or renew a certificate with acme all files you need on the target system will be copied
from acme to a certificate directory.

## Target dir

see ./inc_config.sh ... the target directory is set with

```sh
export CM_diracme="./certs"
```

## File structure

The certificate folder contains the fqdn as directory and in it are the files:

```txt
./certs/
  +-- www.example.com/
      +-- www.example.com.ca.cer
      +-- www.example.com.cert.cer
      +-- www.example.com.fullchain.cer
      +-- www.example.com.haproxy.pem
      +-- www.example.com.key.pem
```

Here are the files from acme client

* the key
* the server certificate
* the intermediate certificate
* a chained certificate (server + intermediate certificate)
* the ca certificate

For Haproxy a 2nd chained certificate will be generated.