How to get and renew a let's encrypt certificate for FTPS without a domain?

S

Sevastoporn2020-06-26 12:23:39

linux

Sevastoporn, 2020-06-26 12:23:39

I'm setting up an FTPS server.
The server will be published from the Internet not by domain, but by ip:port
How, in this case, is it correct to obtain and configure the let's encrypt certificate?
The self-signed certificate does not roll. You need a trusted CA.

CentOS 7.8.2003
vsftpd 3.0.2

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

W

Wexter, 2020-06-26
@sevastoporn

No way, certificates are issued for domains, not IP addresses

V

Vitaly Karasik, 2020-06-26
@vitaly_il1

I recommend SFTP - no messing around with vsftpd, plus effortless encryption.
If nevertheless FTPS - enough self-signed certificate.

S

Sanes, 2020-06-26
@Sanes

https://bitbucket.org/Drobkov/userplus-webserver-u...
Uncomment the encryption section and FTPS will work. This is already there by default.
LE certificates are issued for domains.

C

CityCat4, 2020-06-26
@CityCat4

You can't get an IP certificate. (Technically - you can, there is a possibility, but they are not released)