Now Let's Encrypt HTTPS certificates are all free.
Let's Encrypt allowed everyone to get SSL/TLS certificates are free for their Web servers and HTTPS sites in simple steps.
Let's Encrypt an initiative has been launched by Internet Security Research Group (ISRG) – a free authentication certificates recognized by major Web browsers such as Google Chrome, Mozilla Firefox, Internet Explorere.
The Free SSL Certification Authority is now in beta stage after being tested among a select group of volunteers.
Why Let's Encrypt?
Let's Encrypt promised to provide authentication certificates:
* Free
* Automatic installation and any renewal shall not require any intervention from the administrator.
* Open action will be issued and renewed automatically.
* Transparency so that records of certificates that have been issued or revoked would be available to everyone.
* Secure the Panel promised to follow best practices in conducting this process.
* Co-op in Let's Encrypt managed by stock companies aiming for the benefit of society.
How to install Free SSL certificates?
First, let's say you want to get a certificate for this domain example.com. To start the installation process must have root powers to example.com range.
To generate and install Let's Free SSL Encrypt Certificate, must first download and run an application's client Let Encrypt.
To install certificates Let's Free SSL Encrypt follow these steps:
1. log on to your Web server with the domain example.com using the SSH and root powers.
2. to install the Git version control system type the following command in Terminal:
apt-get install git
3. then download and install the latest version of the application's Client Encrypt Let, print the following command:
#git clone https://github.com/letsencrypt/letsencrypt
#cd letsencrypt
#./letsencrypt-auto
4. Once you start the installation process, press Enter to accept the agreement.
5. then press Enter to select the name of the server manually in the text box (for example www.example.com) and press Enter.
6. Enter your e-mail address, so that you can receive messages from Let's also Encrypt and to recover lost keys, and then press Enter.
7. review the "terms of service", and then press Enter to generate and install the SSL certificate.
Once installation is complete you will receive a "Congratulations" message.
How to configure Nginx/Apache for SSL Encrypt Let's certificates
By default, Nginx or Apache servers are not equipped to use the new certificate.
For example, in the case of Nginx: to use SSL certificates, you need to modify the Nginx configuration file, print the following command to open the settings file Nginx:
$ sudo nano /etc/nginx/sites-available/www.example.com
Inside the file add the following lines:
http{server{…listen 443 ssl;server_name www.example.com;ssl_certificate /etc/letsencrypt/live/www.example.com/fullchain.pem;ssl_certificate_key /etc/letsencrypt/live/.wwwexample.com/privkey.pem;…}}
Save the file, and then restart the server, use this command:
sudo nginx-r reload
Now finished and successfully install the SSL certificate for your domain.
How to renew a certificate Let's Free SSL Encrypt: it is important to know that Let you Encrypt's issuance of certificates, these certificates expire after 90 days. So for renewal you will need to run the letsencrypt-auto script again.
Have fun :) and enjoy free SSL.
0 comments:
Post a Comment