Install a Let's Encrypt SSL Certificate on a 1&1 Cloud Server with Linux

Table of Contents

Introduction

Let's Encrypt is a free, automated SSL Certificate Authority. Using Let's Encrypt is a fast, free way to obtain an SSL certificate for your website. With Plesk, you can create and deploy a Let's Encrypt SSL certificate with just a few clicks.

Requirements

  • A 1&1 Cloud Server with Linux (CentOS 7 or Ubuntu 16.04)

Note: For any 1&1 Cloud Server with Plesk, applications like Let's Encrypt should always be installed and managed through the Plesk interface. See our article Install a Let's Encrypt SSL Certificate on a 1&1 Cloud Server with Plesk for step-by-step instructions.

Firewall Access

If you have a firewall, you will need to allow access to port 443 in order to allow secure HTTPS traffic to and from your server.

For more information about using a firewall on a 1&1 Cloud Server, consult our documentation on the topic.

Install the Let's Encrypt Client

Ubuntu 16.04

Install the git client:

sudo apt-get install git

Use git to download the Let's Encrypt project into the /opt/letsencrypt directory:

sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt

CentOS 7

Install the EPEL repository:

sudo yum install epel-release

Install the git client:

sudo yum install git

Use git to download the Let's Encrypt project into the /opt/letsencrypt directory:

sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt

Create and Install a Let's Encrypt SSL Certificate

Go to the /opt/letsencrypt directory:

cd /opt/letsencrypt

Run the Let's Encrypt script:

sudo ./letsencrypt-auto --apache -d example.com

Be sure to replace example.com with the domain name you want to secure. Follow the prompts to to generate and install a free SSL certificate.

Set Up Automatic Certificate Renewal

Let's Encrypt's free SSL certificates are only valid for 90 days. You will want to set up an automatic process (a "cron job") to renew the SSL certificate(s) on your server every 90 days, to save you the hassle of having to do it manually.

Open the cron table for editing:

sudo crontab -e

Put the following line at the bottom of the file:

* 2 * * 7 /opt/letsencrypt/letsencrypt-auto renew >> /var/log/le-renew.log

Save and exit the file.

This will automatically renew the SSL certificate at 2AM every Sunday.

Comments

Tags: SSL Certificates