How to install free SSL with Let’s Encrypt?

You can automatically enable HTTPS on your website with EFF's Certbot, deploying Let's Encrypt certificates

Apache on CentOS/RHEL 7

To use Certbot, you must first  enable the EPEL repository

Note : If you are using RHEL on EC2, you can enable the optional channel by running:

root@localhost:~# yum -y install yum-utils ; yum-config-manager --enable rhui-REGION-rhel-server-extras rhui-REGION-rhel-server-optional 

After doing this, you can install Certbot by running:  

root@jumphost:~# sudo yum install python2-certbot-apache   

Apache on Ubuntu

 
On Ubuntu systems, the Certbot team maintains a  PPA . Once you add it to your list of repositories all you'll need to do is apt-get the following packages.
 

$ sudo apt-get update

$ sudo apt-get install software-properties-common

$ sudo add-apt-repository ppa:certbot/certbot

$ sudo apt-get update $ sudo apt-get install python-certbot-apache

 

Get Started

 
 
Running this command will get a certificate for you and have Certbot edit your Apache configuration automatically to serve it.
 

root@bastionserver:~# sudo certbot --apache

 
 If you're feeling more conservative and would like to make the changes to your Apache configuration by hand, you can use the   certonly    subcommand:
 

root@jumpserver:~# sudo certbot --apache certonly 

 
Automating renewal
 
Certbot can be configured to renew your certificates automatically before they expire. Since Let's Encrypt certificates last for 90 days, it's highly advisable to take advantage of this feature. You can test automatic renewal for your certificates by running this command:
 

root@jumpserver:~# sudo certbot renew --dry-run

 
If that appears to be working correctly, you can arrange for automatic renewal by adding a  cron job  or  systemd timer   which runs the following:
 

root@jumpserver:~# certbot renew 

 
More detailed information can be found in Certbot documentation
0 (0)
Article Rating (No Votes)
Rate this article
    Attached Files
    There are no attachments for this article.
    Related Articles RSS Feed
    Will Ezeelogin work behind a firewall or NAT or behind a Proxy?
    Viewed 5211 times since Sat, Jul 8, 2017
    How can i reset password / security code ?
    Viewed 2615 times since Wed, Oct 18, 2017
    Configuration and error log files to check for troubleshooting
    Viewed 4868 times since Thu, Jun 15, 2017
    Setting to be changed when sshd is listening on a custom port instead of default port in the ssh jumphost server
    Viewed 1582 times since Sat, Mar 10, 2018
    Default outbound ssh port for target servers added in
    Viewed 1682 times since Thu, Dec 21, 2017
    Configure ssh certificate based authentication
    Viewed 289 times since Fri, Apr 17, 2020
    Set SSH User Expiry
    Viewed 1494 times since Thu, Sep 20, 2018
    Add a server using ssh key pair in ezeelogin
    Viewed 946 times since Fri, Mar 22, 2019
    How do i configure Ezeelogin to authenticate using Windows_AD(Pam-Ldap) in centos?
    Viewed 3624 times since Wed, Feb 7, 2018
    How to enable google 2FA (Two factor Authentication) in ezeelogin ?
    Viewed 3852 times since Mon, Oct 9, 2017