Join the social network of Tech Nerds, increase skill rank, get work, manage projects...
 

  • Secure Apache with Let's Encrypt on Ubuntu

    @amuk.saxena
    Recommendations Offline Message

    • 0
    • 0
    • 0
    • 0
    • 0
    • 0
    • 0
    • 0
    • 787
    Comment on it

    Hello friends, I am writing this blog which will let you know how to secure apache with let's Encrypt on an Ubuntu . Lets begin with the following steps:

    Step 1: Install server dependencies

    Update local packages first:

    1. sudo apt-get update

    Now install Let's Encrypt client. In order to install it you need to install git. Enter the following command to install git:

    1. sudo apt-get install git

    Step 2: Download Let's Encrypt Client

    Now, next we are going to download Let's Encrypt client. Enter the following command to clone Let's Encrypt repository under /opt

    1. sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt

    First access the letsencrypt directory:

    1. cd /opt/letsencrypt

     To obtain certificate that covers a single domain, run the following command where example.com is your domain

    1. ./letsencrypt-auto --apache -d example.com

    If you want to use single certificate for multiple domains or subdomains that you can pass additional parameters to the command:

    1. ./letsencrypt-auto --apache -d example.com -d www.example.com

    Here, base domain is example.com.

     

    Now step by step guide will be given to customize certificate options. Following will be asked by the wizard. First to enter email address and second to choose http or https any of them

    When the installation is done, you can find generated certificate files at /etc/letsencrypt/live. You can verify certificate by following link:

     

    1. https://www.ssllabs.com/ssltest/analyze.html?d=example.com&latest

     

    Step 4: Setup Auto Renewal

     

    It is recommended that you renew certificates every 60 days since Let's Encrypt certificates are valid for 90 days. To renew it run the following command

     

    1. ./letsencrypt-auto renew

    Following is the output of above command:

     

    1. Checking for new version...
    2. Requesting root privileges to run letsencrypt...
    3.    /home/brennen/.local/share/letsencrypt/bin/letsencrypt renew
    4.  
    5.    -------------------------------------------------------------------------------
    6.    Processing /etc/letsencrypt/renewal/example.com.conf
    7.    -------------------------------------------------------------------------------
    8.  
    9.    The following certs are not due for renewal yet:
    10.      /etc/letsencrypt/live/example.com/fullchain.pem (skipped)
    11.      No renewals were attempted.


    This is how you secure a website hosted with Apache using Let’s Encrypt

    Thanks for reading the blog.

    Ubuntu 16.04 Let's Encrypt on Ubuntu
    Comment on it

 0 Comment(s)

Sign In
Forgot Password?
                           OR                           
Create an account !!
                           OR                           
Register

Sign up using

                           OR                           
Forgot Password
Reset Password
Fill out the form below and reset your password: