Centos Nginx Ssl
Install LetsEncrypt SSL for Faveo on Cent OS 7 Running NGINX Web Server
Introduction
This document will list on how to install Let’s Encrypt SSL on CentOS 7 Running Nginx Web Server
PS : Please replace example.com with your valid domain name which is mapped with your server
We will install following dependencies in order to make Let’s Encrypt SSL work:
- epel-release
- mod_ssl
- python-certbot-nginx
Installing dependent modules
yum install epel-release mod_ssl
Downloading the LetsEncrypt for Cent-OS 7
yum install python-certbot-nginx
Setting up the SSL certificate
Certbot will handle the SSL certificate management quite easily, it will generate a new certificate for provided domain as a parameter.
In this case, example.com will be used as the domain for which the certificate will be issued:
certbot --nginx -d example.com
If you want to generate SSL for multiple domains or subdomains, please run this command:
certbot --nginx -d example.com -d www.example.com
PS : IMPORTANT! The first domain should be your base domain, in this sample it’s example.com
Setting up auto renewal of the certificate
Create new cron job for automatic renewal of SSL
This job can be safely scheduled to run every Monday at midnight:
Create a new /etc/cron.d/faveo-ssl
file with:
echo "45 2 * * 6 /etc/letsencrypt/ && ./certbot renew && /bin/systemctl restart nginx.service" | sudo tee /etc/cron.d/faveo-ssl