How to install free SSL with Let’s Encrypt?

You can automatically enable HTTPS on your website with EFF's Certbot, deploying Let's Encrypt certificates

Apache on CentOS/RHEL 7

To use Certbot, you must first  enable the EPEL repository

Note : If you are using RHEL on EC2, you can enable the optional channel by running:

[email protected]:~# yum -y install yum-utils ; yum-config-manager --enable rhui-REGION-rhel-server-extras rhui-REGION-rhel-server-optional 

After doing this, you can install Certbot by running:  

[email protected]:~# sudo yum install python2-certbot-apache   

Apache on Ubuntu

On Ubuntu systems, the Certbot team maintains a  PPA . Once you add it to your list of repositories all you'll need to do is apt-get the following packages.

$ sudo apt-get update

$ sudo apt-get install software-properties-common

$ sudo add-apt-repository ppa:certbot/certbot

$ sudo apt-get update $ sudo apt-get install python-certbot-apache


Get Started

Running this command will get a certificate for you and have Certbot edit your Apache configuration automatically to serve it.

[email protected]:~# sudo certbot --apache

 If you're feeling more conservative and would like to make the changes to your Apache configuration by hand, you can use the   certonly    subcommand:

[email protected]:~# sudo certbot --apache certonly 

Automating renewal
Certbot can be configured to renew your certificates automatically before they expire. Since Let's Encrypt certificates last for 90 days, it's highly advisable to take advantage of this feature. You can test automatic renewal for your certificates by running this command:

[email protected]:~# sudo certbot renew --dry-run

If that appears to be working correctly, you can arrange for automatic renewal by adding a  cron job  or  systemd timer   which runs the following:

[email protected]:~# certbot renew 

More detailed information can be found in Certbot documentation
0 (0)
Article Rating (No Votes)
Rate this article
    Attached Files
    There are no attachments for this article.
    Related Articles RSS Feed
    How To Create a Self-Signed SSL Certificate for Nginx on debian
    Viewed 940 times since Mon, Jun 4, 2018
    Configure Nginx webserver on Jump server / Bastion host
    Viewed 6147 times since Fri, Nov 3, 2017
    setup web ssh console in ezeelogin and ssh via browser
    Viewed 6318 times since Tue, Jan 30, 2018
    Can we map existing user group in ldap to ezeelogin as ezeelogin user group ?
    Viewed 3407 times since Mon, Sep 25, 2017
    what port should i open on my server firewall to fetch ezeelogin license?
    Viewed 2538 times since Wed, Aug 16, 2017
    Add a server using ssh key pair in ezeelogin
    Viewed 534 times since Fri, Mar 22, 2019
    How to configure Yubikey two factor authentication in ssh ?
    Viewed 4604 times since Thu, Jun 15, 2017
    How do i configure Ezeelogin to authenticate using Windows_AD(Pam-Ldap) in centos?
    Viewed 2866 times since Wed, Feb 7, 2018
    add amazon ec2 in jump server or aws jumpbox
    Viewed 2605 times since Tue, May 8, 2018
    Configuration and error log files to check for troubleshooting
    Viewed 4005 times since Thu, Jun 15, 2017