欢迎来到好人卡资源网,专注网络技术资源收集,我们不仅是网络资源的搬运工,也生产原创资源。寻找资源请留言或关注公众号:烈日下的男人

HiCA:免费180天SSL,ACME签发,支持通配符、多域名以及IP证书!

网站源码 sky995 2年前 (2022-11-05) 435次浏览 0个评论

本文及资源最后更新时间 2022-11-05 by sky995

HiCA 是一家国产证书品牌,他们提供ACME 公益签发服务。全球首家公开表示不提供且禁止代理商提供任何形式 Web UI、 桌面 UI 等形式申请界面,还能卖得出去、收得回钱的 CA。而且HiCA 也是全球首家支持IPv4的ACME CA;更是全球首家支持IPv6的ACME CA;全球第二家非魔改版提供大陆OCSP的 ACME CA。提供全套的物联网安全解决方案。更多请访问官网查看。

一、HiCA官网

点击此处进入HiCA官方网站

二、HiCA公益证书签发

1、Linux服务器使用root权限执行以下命令,安全完成后重新连接一下ssh,然后输入acme.sh,使acme生效如果显示了类似v3.0.3这种版本号,那么就表示安装成功了!

复制

<span class="pln">curl https</span><span class="pun">:</span><span class="com">//gitcode.net/cert/cn-acme.sh/-/raw/master/install.sh?inline=false -s | sh -s</span>

2、保持acme.sh一直处于最新版本的状态,执行以下命令

复制

<span class="pun">升级</span><span class="pln"> acme</span><span class="pun">.</span><span class="pln">sh </span><span class="pun">到最新版:</span><span class="pln">acme</span><span class="pun">.</span><span class="pln">sh </span><span class="pun">--</span><span class="pln">upgrade
</span><span class="pun">开启自动升级:</span><span class="pln">acme</span><span class="pun">.</span><span class="pln">sh </span><span class="pun">--</span><span class="pln">upgrade </span><span class="pun">--</span><span class="kwd">auto</span><span class="pun">-</span><span class="pln">upgrade
</span><span class="pun">关闭自动更新:</span><span class="token plain"><span class="pln">acme</span><span class="pun">.</span><span class="pln">sh </span><span class="pun">--</span><span class="pln">upgrade </span><span class="pun">--</span><span class="kwd">auto</span><span class="pun">-</span><span class="pln">upgrade </span></span><span class="token number"><span class="lit">0</span></span>

3、使用HICA一定要注册当前使用设备!否则无法正常签发ssl!执行以下命令,把邮箱替换成自己的邮箱!

复制

<span class="pln">acme</span><span class="pun">.</span><span class="pln">sh </span><span class="pun">--</span><span class="kwd">register</span><span class="pun">-</span><span class="pln">account </span><span class="pun">--</span><span class="pln">accountemail \
    </span><span class="kwd">my</span><span class="lit">@example</span><span class="pun">.</span><span class="pln">com \
    </span><span class="pun">--</span><span class="pln">server http</span><span class="pun">:</span><span class="com">//acme.hi.cn/directory</span>

执行完毕后如果提示以下以下内容则表示注册成功

复制

<span class="pun">❯</span><span class="pln"> acme</span><span class="pun">.</span><span class="pln">sh </span><span class="pun">--</span><span class="kwd">register</span><span class="pun">-</span><span class="pln">account </span><span class="pun">--</span><span class="pln">accountemail \
    </span><span class="pun"><</span><span class="pln">change@email</span><span class="pun">.</span><span class="pln">address</span><span class="pun">></span><span class="pln"> \
    </span><span class="pun">--</span><span class="pln">server http</span><span class="pun">:</span><span class="com">//acme.hi.cn/directory</span>
<span class="pun">[</span><span class="lit">2022</span><span class="pun">年</span> <span class="lit">8</span><span class="pun">月</span> <span class="lit">2</span><span class="pun">日</span> <span class="pun">星期二</span> <span class="lit">21</span><span class="pun">时</span><span class="lit">38</span><span class="pun">分</span><span class="lit">53</span><span class="pun">秒</span><span class="pln"> CST</span><span class="pun">]</span> <span class="typ">Registering</span><span class="pln"> account</span><span class="pun">:</span><span class="pln"> http</span><span class="pun">:</span><span class="com">//acme.hi.cn/directory</span>
<span class="pun">[</span><span class="lit">2022</span><span class="pun">年</span> <span class="lit">8</span><span class="pun">月</span> <span class="lit">2</span><span class="pun">日</span> <span class="pun">星期二</span> <span class="lit">21</span><span class="pun">时</span><span class="lit">38</span><span class="pun">分</span><span class="lit">55</span><span class="pun">秒</span><span class="pln"> CST</span><span class="pun">]</span> <span class="typ">Registered</span>
<span class="pun">[</span><span class="lit">2022</span><span class="pun">年</span> <span class="lit">8</span><span class="pun">月</span> <span class="lit">2</span><span class="pun">日</span> <span class="pun">星期二</span> <span class="lit">21</span><span class="pun">时</span><span class="lit">38</span><span class="pun">分</span><span class="lit">55</span><span class="pun">秒</span><span class="pln"> CST</span><span class="pun">]</span><span class="pln"> ACCOUNT_THUMBPRINT</span><span class="pun">=</span><span class="str">'pAQLaWoYYD5PXp1YbrqFtF3BcU_bv3Ns96c51VyT80g'</span>

4、DNS验证和HTTP验证请参考官方教程:DNS验证

5、添加完dns解析以后就可以直接通过以下命令申请证书了!通配符记得一定要在域名上加入英文的引号!类似:’*.example.com’这样!一级域名则不需要加!若提示 acme.sh 命令不存在,直接 cd 到 /home/.acme.sh目录下相对路径执行命令即可。

复制

<span class="pun">~</span><span class="str">/.acme.sh/</span><span class="pln">acme</span><span class="pun">.</span><span class="pln">sh </span><span class="pun">--</span><span class="pln">issue </span><span class="pun">-</span><span class="pln">d www1</span><span class="pun">.</span><span class="pln">hi</span><span class="pun">.</span><span class="pln">cn </span><span class="pun">--</span><span class="pln">dns dns_dp </span><span class="pun">--</span><span class="pln">server http</span><span class="pun">:</span><span class="com">//acme.hi.cn/directory --days 150 --force</span>

6、签发完成以后证书就在服务器根目录下的acme.sh目录下对应的域名文件夹内!需要手动复制证书(full_chain.pem和key.pem,以纯文本模式打开)粘贴到需要用到的cdn或者服务器上面!


好人卡资源网 , 版权所有丨如未注明 , 均为原创丨本网站采用BY-NC-SA协议进行授权
转载请注明原文链接:HiCA:免费180天SSL,ACME签发,支持通配符、多域名以及IP证书!
喜欢 (0)
发表我的评论
取消评论

表情 贴图 加粗 删除线 居中 斜体 签到

Hi,您需要填写昵称和邮箱!

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址