VestaCP panel environment automatically deploys Let\\’s Encrypt free SSL certificate to the site

Among the many free SSL certificates, Let\\'s Encrypt free certificate is widely used by users and supported by more merchants. The main reason is that the deployment is relatively simple, and many merchants or copywriters provide automatic deployment. Method tutorial. A few days ago, Snail received a message from a netizen, asking if he could share an article about installing SSL certificates for sites based on the VestaCP panel. Don’t hesitate to take some time to deploy Let\\’s Encrypt free SSL certificate in the VestaCP panel and give it a try.

The VestaCP panel should be considered the most commonly used among many free panels. Many netizens in mainland China and abroad use it, and the panel also automatically supports optional simplified Chinese. Just a while ago, I saw “letsencrypt-vesta” on GITHUB that can automatically deploy Let’s Encrypt certificate in VestaCP, so I will give it a try in this article.

Snail has also had related Let\\’s Encrypt articles before:

1. OneinStack one-click package to quickly automatically configure Let\\’s Encrypt free SSL certificate method

2. LNMP V1.4 quickly deploys Let\\’s Encrypt free SSL certificate with one click

First, VestaCP panel deployment Let\\’s Encrypt certificate preparation

1. In this article, Snail chose the CentOS7 64bit system environment, because the system comes with python2.7+ version by default, and this quick installation environment needs to be based on python2.7+.

2. Back up the data. If we are not familiar with it or are unsure, we can try installing it on the test machine first. If it works, then install it in the production environment. If there is website data, it is recommended to back up the data locally just in case.

3. Resolve the domain name that needs to be installed with an SSL certificate to the current server, and add a WEB site in the VestaCP panel, because it is necessary to automatically detect whether the resolution is correct during the installation process.

Second, VestaCP automatically deploys Let\\’s Encrypt setting parameters

1. Install git

yum install git -y

2. Download tools

cd /usr/localgit clone https://github.com/letsencrypt/letsencrypt.gitgit clone https://github.com/interbrite/letsencrypt-vesta.git

3. Create webroot tool directory

mkdir -p /etc/letsencrypt/webroot

4. Effective soft link

ln -s /usr/local/letsencrypt-vesta/letsencrypt.conf /etc/httpd/conf.d/letsencrypt.conf

Here I installed the VESTA environment directly by default, using apache. If we use nginx, the configuration is still different. For details, please refer here: https://github.com/interbrite/letsencrypt-vesta

5. Also set the certificate soft link to take effect

ln -s /usr/local/letsencrypt/letsencrypt-auto /usr/local/bin/letsencrypt-autoln -s /usr/local/letsencrypt-vesta/letsencrypt-vesta /usr/local/bin/letsencrypt-vesta

6. Restart to take effect

service httpd restart

Third, VestaCP automatically deploys Let\\’s Encrypt configuration domain name and automatically installs

We have completed the deployment above. Here we can automatically install the SSL certificate according to the site we need.

letsencrypt-vesta username domain

According to this format, you can run directly those who need to install a certificate, such as letsencrypt-vesta admin laobuluo.com. We need to pay attention to one thing, because it requires installation and deployment, as well as domain name verification during the process, so it will take a while. There is another time in the middle where you need to enter Y and press Enter.

Only when you see the limited-time successful interface in the picture above, the installation is complete. We can see that there are 90 days automatically. We will not care about this for now. We will talk about automatic renewal later. We're not done setting it up yet.

We need to go to the current site in the VestaCP panel background and enable Let\\’s Encrypt in the SSL support option. After saving, we go to the front desk to open the domain name HTTPS, and we can see that SSL has taken effect.

Fourth, set up automatic renewal Let\\’s Encrypt

crontab -e8 2 1 */2 * /usr/local/bin/letsencrypt-vesta USERNAME DOMAIN

The premise is that crontab has been installed on our current server, and then when setting up a custom script, change the red part to our domain name and user name.

Fifth, summary of VestaCP automatically installing Let\\’s Encrypt

1. The above tool can be used to quickly install the Let\\’s Encrypt certificate in the VestaCP panel. After the tool is deployed, the certificate can be automatically installed as needed, but SSL also needs to be enabled in the panel to take effect.

2. For detailed documentation of the tool, please refer to: https://github.com/interbrite/letsencrypt-vesta

Recommended site search: personal virtual host, free virtual host, Hong Kong high-defense server permanent free cloud server address, Hong Kong server purchase, US ASP space, php host space, US server website, free foreign space, Guangdong server rental, < /p>