Page Comparison

...

Note
Prerequisites before using install-reverse-proxy:

Open port 80 for to enable the Let’s encrypt Encrypt certbot domain-control proof-check, and
open port 443 to expose the extensions.
The /batm/config/hostname file must point to the domain to be used.
The file must contain just a valid domain, e.g.:
You must own and control a valid DNS domain,
1. for example, agent86.yourcasdomain.com
2. The script will fail if this file is missing.
3. If this occurs,
  1. create the file (with the correct contents),
  2. restart CAS, and
  3. run install-reverse-proxy again.
The domain listed in the
1. must resolve (to your CAS public IP).
2. See below: Create an “A” record
3. The script will fail if you cannot supply a valid DNS domain. If the script fails for this reason, then:
  1. add the domain (e.g. agent86.yourcasdomain.com) to your DNS records, and
  2. run sudo certbot --nginx to try again.
The /batm/config/hostname file must point to a that valid DNS domain ,
for example, agent86.yourcasdomain.com must resolve (to your CAS IP).
See below: Create an “A” record

If the script fails for this reason, then:

add the domain (

to be used.

The file must contain just a valid domain, e.g.: agent86.yourcasdomain.com
) to your DNS records
The script will fail if this file is missing. If the file is missing:
1. create the file (with the correct contents),
2. restart CAS, and
3. run sudo certbot install-reverse-nginx to try proxy again.

Disable version reporting in NGINX:
1. Edit the file: /etc/nginx/nginx.conf
2. Find the line: # server_tokens off;
3. Delete the leading hashtag “#” “#" (only the hashtag) to disable version reporting.
4. Test the configuration and restart NGINX: sudo nginx -t && sudo systemctl reload nginx

URL path examples (replace “agent86“agent86.yourcasdomain.com” com" with your actual domain):

...

to permanently enable automatic certbot renewals, seeread below: Certbot Certificate Renewals

...

Versions Compared