Lets Encrypt on CentOS 7 with Apache


Install Let’s Encrypt on CentOS 7 with Apache

Let’s Encrypt is a certification authority that offers free X.509 certificates for Transport Layer Security (TLS). This tutorial explains how to perform Let’s Encrypt SSL using the ACME process with certbot and how to implement Let’s Encrypt on a CentOS 7 host with Apache web server.

Assuming that the Apache web server is already installed, the domain is configured as Apache VirtualHost, and the domain is dissolvable in DNS, with an A-record in the forward zone of that domain, or a quad-A record for the server is entered for IPv6. Furthermore, the server must be accessible via port 80 for the ACME Challenge.

For installation we want to become root.

Now restart the Apache web server.

Open the firewall for SSL with the service port 443.

Now let the certbot generate the SSL certificate.

The first domain should be the base domain. In this example, it is called mydomain.com to replace it with the actual domain name.

The output of the certbot looks something like this.

Finally, the URL can be tested.

Get the URL in the browser and verify it with SSL Labs.

SSL Labs SSL Analyzing Report

The Let’s Encrypt certificate is valid for 90 days. For the automatic renewal of the certificate, we create a new cron job.

The certificate is checked once a week at midnight for renewal.

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

We are sorry that this post was not useful for you!

Let us improve this post!

Tell us how we can improve this post?

Leave a Reply

Your email address will not be published. Required fields are marked *