View all posts

R1Soft Let’s Encrypt Integration

In this article, we’ll cover how to secure the R1Soft Server Backup Manager (CDP) with Let’s Encrypt SSL.

Here is what the script does :

  • Updates the following packages:
    nss nss-util nss-util nss-sysinit nss-tools wget  curl  ca-certificates openssl

  • Downloads Certbot (if not already done)

  • Creates a Keystore for R1Soft CDP

  • Creates a Let’s Encrypt certificate through Certbot

  • Imports the certificate into R1Soft Keystore

First, we need to change the CDP webserver port:

r1soft web port

Once done, you’ll access the R1Soft Server Backup Manager via https://your.backupserver.com:6443/

Now, simply wget the script, change execution rights, and launch it:

wget -N https://gitlab.haisoft.net/pub/R1Soft_LetsEncryptIntegration/raw/master/SSLR1Soft.sh ; chmod +x SSLR1Soft.sh
./SSLR1Soft.sh

You can add a cron to renew your certificate:

0 1 * * * /root/SSLR1Soft.sh

You can also clone this git repo, and create a cron task to get the script updates:

cd /root/HaiSoft/
git clone https://gitlab.haisoft.net/pub/R1Soft_LetsEncryptIntegration.git

Script update cron:

0 5 1 * * /root/HaiSoft/R1Soft_LetsEncryptIntegration/SSLR1Soft.sh
0 0 1 * * cd /root/HaiSoft/R1Soft_LetsEncryptIntegration ; git pull

You just have to make sure your web ports are not filtered, and nothing is running on port 80 (or you’ll have to stop it before launching the script).

As above, R1Soft runs only on port 6443, therefore leaving ports 80 and 443 available.

Common Issues:

-bash: /usr/bin/keytool: Permission denied

Solution:

chmod 0755 /usr/bin/keytool

That’s it!

You can now access your R1Soft Server Backup Manager over SSL: https://your.backupserver.com:6443/

Related Articles...

How to sync server time

How to sync server time in CentOS & AlmaLinux

The NTP protocol synchronises the clocks of computers over a network. In this article, we will show you how to quickly sync the server time. Many systems-related tasks and processes require the correct timezone. For example, the cron daemon uses... Read more

This website uses cookies

We use cookies for the analysis of our visitor data, to improve our website, and to give you a great website experience. For more information about the cookies we use, please see our cookie policy.