Centos8s Apache Ssl

Install LetsEncrypt SSL for Faveo on CentOS-8-Stream Running Apache Web Server

CentOS-8-Stream OS Logo

Introduction

This document will list on how to install Let’s Encrypt SSL on CentOS-8-Stream Running Apache Web Server

PS : Please replace example.com with your valid domain name which is mapped with your server

We will install following dependencies in order to make Let’s Encrypt SSL work:

  • epel-release
  • mod_ssl
  • python-certbot-apache

Installing dependent modules

yum install epel-release mod_ssl

Downloading the LetsEncrypt for CentOS-8-Stream

yum install python3-certbot-apache

Setting up the SSL certificate

Certbot will handle the SSL certificate management quite easily, it will generate a new certificate for provided domain as a parameter.

In this case, example.com will be used as the domain for which the certificate will be issued:

certbot --apache -d example.com

If you want to generate SSL for multiple domains or subdomains, please run this command:

certbot --apache -d example.com -d www.example.com

PS : IMPORTANT! The first domain should be your base domain, in this sample it’s example.com

Setting up auto renewal of the certificate

Create new cron job for automatic renewal of SSL

This job can be safely scheduled to run every Monday at midnight:

Create a new /etc/cron.d/faveo-ssl file with:

echo "45 2 * * 6 /etc/letsencrypt/ && ./certbot renew && /bin/systemctl restart httpd.service" | sudo tee /etc/cron.d/faveo-ssl

Updated: