How to manually renew SSL For Free Let\\’s Encrypt certificate

Snail's article "Use the SSL For Free tool to obtain Let\\'s Encrypt free SSL certificate in 3 minutes" introduces the SSL For Free online tool, which can quickly obtain Let\\'s Encrypt in a short period of time. Certificate, because the Let\\'s Encrypt certificate period needs to be replaced after 90 days before it can continue to be used for free, so this tool is not suitable for long-term website projects.

Including when we build the website WEB environment, whether it is a panel or a panel-less one-click installation package, it usually comes with Let\\'s Encrypt certificate installation, and it is automatically renewed unless there is a problem with our system. Sometimes it is true that the contract cannot be renewed normally. However, if you have a short-term project and the environment cannot configure the automatic renewal certificate, you can only renew it manually when using SSL For Free.

Just as the certificate obtained by the online tool used in the company's project in this article requires manual renewal, so Snail will record it by the way, and friends in need can refer to it.

First, check and click the renewal button

Generally, SSL For Free will send us an email about a week before expiration, notifying us that it is about to expire. We can log in to the backend to see the domain names that are about to expire in the list, and click RENEW directly.

Second, verify ownership

Here we normally need to verify domain name ownership, which is actually somewhat similar to the previous application.

You need to download 2 files and then replace them in the corresponding directory. If we have installed them before, they should not be deleted. Finally click the button to verify and download.

Third, download certificates and updates

Here we can see the new certificate and KEY, merge CA_bundle.crt into certificate.crt, and then replace the KEY and CRT files in our existing site SSL file. Finally we restart NGINX.

/etc/init.d/nginx restart

After restarting Nginx, the new SSL certificate can take effect.

Fourth, check the certificate and delete the old certificate

Here we can see the new certificate and the old certificate can be deleted.

When you open the website, you can see that the certificate has been updated for another 90 days.

To summarize, this SSL FOR FREE tool is convenient to apply for, but if it is to build a website or use it for a long time, it is really inconvenient. We can use the automatic certificate mode, which is suitable for temporary use.

Recommended site search: Korean website domain name, registration number query, anti-complaint vps host, domain name registration query, Hong Kong cloud server 10 yuan a year, free US host, registration number, Japanese server rental Japanese server, US server website, million Domain name space,