Generate SSL Certificates using Letsencrypt
This document guides you to generate and renew SSL certificates using letsencrypt.
Procedure
The steps to generate SSL certificates are given below.
Install letsencrypt and certbot.
Generate Certificate.
Since the preferred challenge is DNS type, the above command asks for
_acme-challenge.
Create the_acme-challenge
TXT DNS record accordingly, and continue with the above prompt to generate certs.The generated certs must be present in
/etc/letsencrypt
directory.
Renew certificates
Run the same generate certs command to renew certs.
The above command generates a new pair of certificates. The DNS challenge needs to be performed again, as prompted.
Restart Nginx
Last updated