Setting up Sentora on Bytemark with SSL

Sentora Logo
  1. Spin up a new server on Bytemark’s BigV
  2. Install Ubuntu 14.04.
  3. I have changed the reverse DNS to njoror.squashedfly.eu
  4. Set up SSH Key login
  5. visit http://docs.sentora.org/?node=22 and follow the instructions: `
    bash <(curl -L -Ss http://sentora.org/install)

    (you will need to double check the subdomain, and ipV4 address)

  6. update the DNS for your panel subdomain – http://njoror.squashedfly.eu
    • Our DNS is hosted with Cloudflare because it makes sense,
    • A record to njoror to the ipV4 and AAAA record for ipV6 this allows direct access to njoror.squashedfly.eu (don’t pass this domain via the CDN cloud), will also want the MX sorted some how.

Let’s Encript

  1. following the instructions at http://forums.sentora.org/showthread.php?tid=688&page=3 as a start point…
  2. Install Lets Encrypt:
    apt-get install git cd ~ git clone https://github.com/letsencrypt/letsencrypt cd letsencrypt
  3. Now we have the Let’s Encrypt package installed we set it up on the panel address:
    ./letsencrypt-auto certonly --webroot -w /etc/sentora/panel/ -d njoror.squashedfly.eu
  4. You will be asked for an email address… Make sure that it is one that you will not loose access to!.
  5. The SSL certificates are located in “/etc/letsencrypt/live/njoror.squashedfly.eu` + cert.pem + chain.pem + fullchain.pem + privkey.pem”
  6. Activate SSL (if not yet active)
    a2enmod ssl
  7. Restart Apache
    service apache2 restart
  8. Go to Sentora -> Admin -> Module Admin -> Apache Config
  9. Under Global Sentora Entry:
    Redirect Permanent / https://njoror.squashedfly.eu/
    
    Listen 443
    SSLEngine on
    
    SSLProtocol all -SSLv2 -SSLv3
    SSLCertificateFile /etc/letsencrypt/live/njoror.squashedfly.eu/cert.pem
    SSLCertificateKeyFile /etc/letsencrypt/live/njoror.squashedfly.eu/privkey.pem
    SSLCertificateChainFile /etc/letsencrypt/live/njoror.squashedfly.eu/fullchain.pem
    DocumentRoot "/etc/sentora/panel/"
    ServerName njoror.squashedfly.eu
    ErrorLog "/var/sentora/logs/sentora-error.log"
    CustomLog "/var/sentora/logs/sentora-access.log" combined
    CustomLog "/var/sentora/logs/sentora-bandwidth.log" common
    AddType application/x-httpd-php .php
    <Directory "/etc/sentora/panel/>
    Options +FollowSymLinks -Indexes
    AllowOverride All
    Require all granted
  10. Restart Apache:
    sudo service apache2 restart

Leave a Reply

%d bloggers like this: