Commit 678924cf by Adi Amir

update knowledgebase

parent 49b7a0ff
renew-certificate-for-archiva.txt renew-certificate-for-municipalitybank.txt
objective objective
========= =========
in case the archiva's cerificate expires, you need to restart the stunnel-archiva docker in case the municipalitybank's cerificate expires, you need to restart gitlab,stunnel-archiva and owncloud dockers
in order to read the updated certficate. since it doesn't happens automaticall. in order to read and update certficate. since it doesn't happens automaticall.
both gitlab & archive uses the same certificate. gitlab & archives(stunnel-archiva and owncloud) uses the same certificate.
A. To restart stunnel-archiva A. To restart stunnel-archiva
----------------------------- -----------------------------
1. verify that yiou have a valid certifcate by going into: 1. verify that you have a valid certifcate by going into:
url: https://municipalitybank.com/ url: https://municipalitybank.com/
if no ssl issue occurs, the certifcate is valid. if no ssl issue occurs, the certifcate is valid.
...@@ -46,12 +46,41 @@ passwd: giptmgrr ...@@ -46,12 +46,41 @@ passwd: giptmgrr
2. to renew the certificate run the following: 2. to renew the certificate run the following:
>/usr/bin/certbot renew --quiet --renew-hook "docker exec volumenyc101_gitlab_1 /usr/bin/gitlab-ctl restart nginx" >/usr/bin/certbot renew --quiet --renew-hook "docker exec volumenyc101_gitlab_1 /usr/bin/gitlab-ctl restart nginx"
check the browser again!
if the browser still shows that the certificate is invalid run the following command
>docker exec volumenyc101_gitlab_1 /usr/bin/gitlab-ctl restart nginx
this also restarts the gitlab docker in order to refresh its certifate this also restarts the gitlab docker in order to refresh its certifate
you need to restart manually the stunnel-archiva as detailed in section A. you need to restart manually the stunnel-archiva as detailed in section A.
C. To restart owncloud-stunnel
------------------------------
1. verify that you have a valid certifcate by going into:
url: https://municipalitybank.com:8085/
if no ssl issue occurs, the certifcate is valid.
if not valid, perform the section [B. To renew certiftcate]
2. login into municipalitybank.com
> ssh root@municipalitybank.com
passwd: giptmgrr
3. goto /mnt/volume-nyc1-01/owncloud/config
> cd /mnt/volume-nyc1-01/owncloud/config
4. restart the owncloud-stunnel docker
> dc stop stunnel-owncloud
> dc rm -f stunnel-owncloud
> dc up -d stunnel-owncloud
5. check that you enter the archiva with no SSL issues.
url: https://municipalitybank.com:8085/login
done!
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or sign in to comment