Certbot Cert Only Let's Encrypt SSL for Manual Setup

Thursday, December 24, 2020
The automated installation of Certbot works well with a clean VPS server. However, the trouble begins whenever the pre-owned setup is complex (unsupported cPanel). The SSL certificate is not only limited to the Web Server. Let's Encrypt certificate can also be used in a mail server or SFTP setup. Therefore manual generation mechanism is essential to use the authorised SSL certificate in our desired application. The below example is for apache to gain little insight into the usage
  1. Install Cerbot
    For Debian Systems
    sudo apt install certbot
    For RHEL/Centos
    sudo yum install certbot
  2. Run the Certbot Command by replacing example.com with your domain:
  3. Agree the Terms.
  4. To validate the domain, a TXT record value will be generated by certbot. just copy the info and create a TXT record on you DNS zone editor provided by you registrar and then hit enter.
  5. Once the domain gets validated, the certs would be generated and a location will be displayed on the screen. Now you can install the certificates that are generated. Below is the apache 2 configuration example:
    SSLCertificateFile /etc/letsencrypt/live/example.com/cert.pem
    SSLCertificateKeyFile /etc/letsencrypt/live/example.com/privkey.pem
    SSLCertificateChainFile /etc/letsencrypt/live/example.com/chain.pem
Thats all for SSL setup. In early day, The steps to get free SSL certificate were difficult but now it is simplified to a single command. Please share if you like the content.

No comments: