setcap equiv for windows? #39
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
What is the windows equivalent commands for this ?
sudo setcap 'cap_net_bind_service=+ep' $(which node)
This is the only thing I haven't done, but can't seem to get the challenge_status to accepted, currently fails /timesout with pending ... perhaps bc I did not do that command above since I am on a windows machine?
Windows doesn't work that way, so ignore it.
But the reason it's failing for you is likely that either you're using http-01 (the default) and you don't have port-forwarding set up on your router, or that your dns-01 (which you need for Let's Encrypt on localhost) is misconfigured.
windows equiv?to setcap equiv for windows?Thank you Solderjs, is there a place to better understand the configuring of the http-01 and dns-01, which one I need and how to config that in my node/express app? Or did I miss that part... I need it explained to me like I am 5.
So what I did was,
went to greenlock.domains, entered my domain that I need a cert for, downloaded the file .... placed the file in my serverroot /well-known/acme-challenge
and have this config for my server ... .
here is my greenlock.d config
I config'd my server code yesterday, should I have gone through the steps on my server AFTER I got the challenge installed on my prod server from greenlock.domains?
The verification on greenlock.domains timed out
Do I need to specifically serve the route path to /well-known ?
Port 80 IS NOT open on my prod server yet.
DNS-01
Unfortunately dns-01 challenges cannot be explained as though you are 5.
You would need to use one of the supported DNS hosts in this list: https://git.rootprojects.org/root/greenlock-express.js#user-content-ready-made-integrations and you'd need to figure out how to get the API key from that DNS host.
Port 80
You must have port 80 open unless you have something special you need to handle, all traffic on Port 80 should be handled by Greenlock.
At the very least
/.well-known/acme-challenge/
(not/well-known
- missing.
) must go through to Greenlock. Let's Encrypt cannot work through the defaulthttp-01
without it.Manual Certificates
https://greenlock.domains is intended as a test site for non-node users to get 90-day certificates. Although it's possible to put everything in the right directories and have those keys and certs work with Greenlock.js in node, I wouldn't recommend trying.
Closing because I haven't heard anything else. Let me know if that helped or if you'd like to re-open.