SSL/TLS certificate doesn’t cost a penny. Thanks to Let’s Encrypt.
SSL Certificate is mandatory for any transactional services based business website on complying with PCI DSS. It secures the data transmitted from the client to the server. Having SSL/TLS (HTTPS) to your website also helps you to boost ranking in Google Search.
Usually, SSL cert costs more than $200; however, if you need a certificate for a non-production environment where data transaction is not critical, you may try FREE SSL by Let’s Encrypt.
Let’s Encrypt is an open certificate authority (CA) sponsored by SUCURI, Cisco, Facebook, AKAMAI, Chrome, Automatic, SiteGround, etc. that issue an SSL certificate at no cost. Let’s Encrypt has already issued a close to 200 million SSL certificate to date.
Let’s get it started by using Let’s Encrypt to get SSL cert on the Linux environment for Apache HTTP Server. The below example is based on techpostal.com hosted on DigitalOcean with the Apache HTTP server.
Installing Let’s Encrypt
- Login into Linux server
- Go to the path where you want to install the let’s encrypt
- Clone the git repository of let’s encrypt
git clone https://github.com/letsencrypt/letsencrypt
Note: if you don’t have git installed, then you may use yum command to install it.
yum install git
- You will see a new folder “letsencrypt” created in your present working directory
drwxr-xr-x. 14 root root 4096 Mar 6 01:00 letsencrypt
- Go to the newly created folder
- Execute below command to install its all dependency
This may take a few minutes to install. It will look for ServerName in Apache httpd.conf file and prompt to confirm the name which you would like the activate HTTPS for.
- Select the domain name from the list and OK
- Enter the email address and OK
- Agree on the Terms of Service
- It will prompt you to choose if you would like to allow HTTP and HTTPS both or ONLY HTTPS.
- Select the one you want and OK
It will take a few seconds and then give you confirmation on successfully enabled SSL cert on your domain.
To validate, access your HTTPS URL, and you should see it’s issued by “Let’s Encrypt Authority.”
You see, the entire process to get SSL cert is very easy.
Once you have an SSL certificate enabled for your website, then don’t forget to test the site for SSL/TLS vulnerability and misconfiguration.
More great readings on Apache HTTP
How to Redirect AMP Page to Non-AMP in Nginx, Apache, Cloudflare?Abhishek Nair on September 27, 2021
How to Install Apache and Secure with Let’s Encrypt Certtificate?Aghilan Baskar on April 5, 2021
How to Block .git in Apache, Nginx and Cloudflare?Chandan Kumar on October 27, 2020
How to Protect Page with Password in Apache, Nginx, WordPress, Hosting?Chandan Kumar on September 11, 2020
How to Implement ZeroSSL Certificate in Apache and Nginx?Asad Ali on May 24, 2020
How to Enable CORS in Apache and Nginx?Chandan Kumar on October 18, 2019
Join Geekflare Newsletter
Every week we share trending articles and tools in our newsletter. More than 10,000 people enjoy reading, and you will love it too.