Introduction:
Enabling HTTPS on your domain is crucial for securing communications and protecting sensitive data. Certbot is a widely-used tool that simplifies the process of obtaining and managing SSL/TLS certificates. In this guide, we will walk you through the steps of installing Certbot and enabling HTTPS on a domain hosted on Apache running on CentOS 7. By following these instructions, you’ll be able to secure your website and provide a secure browsing experience for your visitors.
Step 1: Update System Packages:
Before proceeding with the installation, it’s important to update your system packages. Open a terminal on your CentOS 7 system and run the following commands:
sudo yum update
Enter your password if prompted and wait for the updates to complete.
Step 2: Enable EPEL Repository:
Certbot is available in the EPEL (Extra Packages for Enterprise Linux) repository. If you haven’t enabled it already, run the following command to enable the EPEL repository:
sudo yum install epel-release
Step 3: Install Certbot:
To install Certbot, use the following command in the terminal:
sudo yum install certbot python2-certbot-apache
Step 4: Obtain and Install SSL Certificate:
To obtain and install an SSL certificate for your domain with Apache, run the following command:
sudo certbot --apache
Certbot will guide you through the process, prompting for information such as your email address and domain name. Follow the instructions provided by Certbot to generate and install the SSL certificate. Certbot will automatically update your Apache configuration to enable HTTPS.
Step 5: Test SSL Configuration:
After the SSL certificate installation, it’s important to test the configuration to ensure everything is working correctly. Run the following command to perform a test on your Apache configuration:
sudo apachectl configtest
If the configuration is valid, you will see a message indicating that the syntax is OK.
Step 6: Automate Certificate Renewal:
SSL certificates have an expiration date, and it’s crucial to renew them to maintain secure connections. Certbot provides an automatic renewal feature. To set up automatic certificate renewal, run the following command:
sudo certbot renew --dry-run
This command will simulate the renewal process, allowing you to test the renewal procedure without actually renewing the certificate. If the dry run is successful, Certbot will automatically renew the certificate when it’s close to expiration.
Conclusion:
By following this step-by-step guide, you have successfully installed Certbot and enabled HTTPS on a domain hosted on Apache on CentOS 7. Your website is now secured with an SSL certificate, providing encrypted and trusted connections to your visitors. Regular certificate renewal through Certbot’s automatic renewal feature will ensure the continued security of your domain. Enjoy the benefits of HTTPS and provide a secure browsing experience, establishing trust and safeguarding sensitive data.
Nilesh R. Agrawal 