Knowledgebase:
Using Let's Encrypt for free SSL Certificates
Posted by Arif Saleem on 09 January 2020 10:48 AM

Let's Encrypt provides a mechanism to install and renew free SSL Certificates that are accepted by major browsers.

See:

https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-centos-7

Setup procedure on CentOS:

yum install certbot python2-certbot-apache

Add a cronjob to auto-renew SSL Certs:

crontab -e
10 4 * * * /usr/bin/certbot renew >/dev/null 2>&1

Generate an SSL Cert and Vhost entry for a domain:

certbot --apache -d somedomain.com -d www.somedomain.com

Then edit the VirtualHost and add in the log file settings in this file:

/etc/httpd/conf.d/vhosts-le-ssl.conf

Once the first domain has been installed, we need to set the SSL options based on what we normally use in the vhosts.conf file:

vim /etc/letsencrypt/options-ssl-apache.conf
and set appropriate options

(0 vote(s))
Helpful
Not helpful

Comments (0)