Let’s Encrypt

Ever since I learned about Let’s Encrypt, I’ve been using it ever since and it has been almost 2 years now. At first using it with cPanel even if cPanel has its own certificates as well, but Let’s Encrypt rocks because now it supports wildcards.

I just reduced 20 Let’s Encrypt down to 3, considering for 3 sites. This is possible because of the new certbot ability to generate wildcards certificates. This actually one the best implications for people who are using WordPress Multisite or any kind of virtual hosts in the same domain.

Let’s Begin

Let’s go ahead and clone cerbot from GitHub

git clone https://github.com/certbot/cerbot.git
cd cerbot
sudo mv certbot-auto /usr/local/bin/certbot-auto

The latest version will eventually asked you to move the cerbot-auto to

/usr/local/bin/certbot-auto

because of security, which is fine. This allows you to actually use certbot-auto anywhere you want. The next step is to use root privileges to begin the process

sudo certbot-auto --manual --server https://acme-v02.api.letsencrypt.org/directory

Once you run the above command line for the first time, it will then start looking for dependencies and download and install whatever Let’s Encrypt needs. It then will asked you to some stuff and you must agree to the terms or else it will cancel. Once you agree the terms, it will ask you to enter the domain names that you want to use.

*.domain.com domain.com

It will instruct you to create a DNS TXT record for _acme-challenge.luthemes.com as well as to create the following generate name and content as follow domain.com/.well-known/acme-challenge/

This will then verified if the wildcards are legitimate and success, you have a valid wildcard from Let’s Encrypt. The domain certificates are located at

/etc/letsencrypt/live/domain.com/

Leave a Reply

Your email address will not be published. Required fields are marked *