Installing Let’s Encrypt SSL on CentOS 7 Running Apache Web Server
Before starting how to install Let’s Encrypt SSL on CentOS7 let’s first discuss :What is Let’s Encrypt SSL Certificate and why it is required?
Every customer wants to have a secured access to a website and also want to know that whether the product and the services offered by them are authenticate or not. Therefore Security of your website plays an important role in converting the visitor’s into customers. If you want to provide a secured service to the customer’s then it is required to purchase an Let’s Encrypt SSL Certificate.
From this overview we come to know that an SSL Certificate is required for the security of your website.
Sensitive data like credit card information, login information and a whole bunch of valuable information that needs to be encrypted and also needs to be secured. HTTPS simply makes encryption. When valuable information is transferring from the browser to the web server then if hackers try to pick up this encrypted data then it is really hard for them to decrypt it. Thus HTTPS means the website is secured.
Let’s go towards the installation part:
This blog will explain how to install Let’s Encrypt SSL Certificate on CentOS 7 Running Apache web Server
In this blog we will list how to install Let’ Encrypt SSL on CentOS 7 Running Apache Web Server
Note : Please replace pqr.com with your domain name which is maped with your server.
Let’s start with installing following dependencies in order to make Let’s Encrypt SSL work:
1. Let’s first Install dependent modules
yum install epel-release mod_ssl
2. Now Download the Let’s Encrypt client
yum install python-certbot-apache
3. Let’s Set up the SSL certificate
SSL Certificate is quite easily manage by the Certbot. They will generate a new certificate for the domain which you have provided as a parameter.
In our case, we will be using pqr.com as the domain for which the certificate will be issued. Therefore following command will be used:
certbot –apache -d pqr.com
Following command is used for generating SSL Certificate for multiple domains or subdomains :
certbot –apache -d pqr.com -d www.pqr.com
Please Note : In above example first domain should be your base domain i.e. in our case it is pqr.com
Let’s Set up auto renewal of the SSL certificate:
For this it is required to create a new Cron job for the automatic renewal. You can easily schedule this cron job to run on every Monday at midnight:
0 0 * * 1 /usr/bin/certbot renew >> /var/log/sslrenew.log