Securing your website with SSL (Secure Socket Layer) is essential for data encryption, improved search engine rankings, and user trust. Let\u2019s Encrypt<\/strong> provides free SSL certificates, making it easy to secure your site without additional costs. In this guide, you\u2019ll learn how to set up Let\u2019s Encrypt SSL on both Apache<\/strong> and NGINX<\/strong> web servers, along with configuring auto-renewal scripts to ensure your certificates never expire unexpectedly.<\/p>\n This step-by-step guide covers installation, configuration, and automation for hassle-free SSL management.<\/p>\n Before we begin, ensure you have:<\/p>\n Certbot is a command-line tool that automates the process of obtaining and renewing SSL certificates from Let\u2019s Encrypt.<\/p>\n Update the package list:<\/p>\n sudo apt update<\/p><\/blockquote>\n Install Certbot and the necessary plugins for Apache and NGINX:<\/p>\n sudo apt install certbot python3-certbot-apache python3-certbot-nginx -y<\/p><\/blockquote>\n To secure your website running on Apache, use the following command:<\/p>\n sudo certbot –apache -d yourdomain.com -d www.yourdomain.com<\/p><\/blockquote>\n Certbot will:<\/p>\n Follow the interactive prompts to:<\/p>\n After installation, restart Apache:<\/p>\n sudo systemctl restart apache2<\/p><\/blockquote>\n Visit For NGINX, the process is similar:<\/p>\n sudo certbot –nginx -d yourdomain.com -d www.yourdomain.com<\/p><\/blockquote>\n Certbot will automatically detect your NGINX configuration and adjust it to support SSL. Choose the option to redirect HTTP to HTTPS when prompted.<\/p>\n Restart NGINX:<\/p>\n sudo systemctl restart nginx<\/p><\/blockquote>\n Open Let\u2019s Encrypt certificates are valid for 90 days. Fortunately, Certbot makes auto-renewal easy.<\/p>\n Run this command to simulate the renewal process:<\/p>\n sudo certbot renew –dry-run<\/p><\/blockquote>\n If the test completes successfully, auto-renewal is working correctly.<\/p>\n Although Certbot installs a systemd timer by default, you can add an extra layer of automation with a cron job.<\/p>\n sudo crontab -e<\/p><\/blockquote>\n Add the following line to renew SSL certificates twice a day:<\/p>\n 0 0,12 * * * \/usr\/bin\/certbot renew –quiet<\/p><\/blockquote>\n For advanced automation, you can create a custom script to renew SSL and reload the web server automatically.<\/p>\n sudo nano \/usr\/local\/bin\/ssl-renew.sh<\/p><\/blockquote>\n Insert the following:<\/p>\n #!\/bin\/bash Make the script executable:<\/p>\n sudo chmod +x \/usr\/local\/bin\/ssl-renew.sh<\/p><\/blockquote>\n sudo crontab -e<\/p><\/blockquote>\n Add the cron job:<\/p>\n 0 1 * * * \/usr\/local\/bin\/ssl-renew.sh<\/p><\/blockquote>\n This runs the script daily at 1 AM, renewing SSL certificates and reloading Apache\/NGINX if necessary.<\/p>\n sudo certbot certificates<\/p><\/blockquote>\n<\/li>\n sudo certbot renew<\/p><\/blockquote>\n<\/li>\n sudo less \/var\/log\/letsencrypt\/letsencrypt.log<\/p><\/blockquote>\n<\/li>\n<\/ul>\n sudo apt update && sudo apt upgrade certbot -y<\/p><\/blockquote>\n<\/li>\n You\u2019ve successfully secured your website with Let\u2019s Encrypt SSL on Apache and NGINX. Automating the renewal process ensures continuous protection without manual intervention. Regular monitoring, along with proper server configurations, will help maintain a secure environment for your website visitors.<\/p>\n","protected":false},"excerpt":{"rendered":" Introduction Securing your website with SSL (Secure Socket Layer) is essential for data encryption, improved search engine rankings, and user trust. Let\u2019s Encrypt provides free SSL certificates, making it easy to secure your site without additional costs. In this guide, you\u2019ll learn how to set up Let\u2019s Encrypt SSL on both Apache and NGINX web […]<\/p>\n","protected":false},"author":1,"featured_media":737,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[6,9],"tags":[93,138,62,139,134],"_links":{"self":[{"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/posts\/736"}],"collection":[{"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/comments?post=736"}],"version-history":[{"count":3,"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/posts\/736\/revisions"}],"predecessor-version":[{"id":741,"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/posts\/736\/revisions\/741"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/media\/737"}],"wp:attachment":[{"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/media?parent=736"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/categories?post=736"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forumweb.hosting\/blog\/wp-json\/wp\/v2\/tags?post=736"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Prerequisites<\/h3>\n
\n
Step 1: Install Certbot<\/h3>\n
Step 2: Obtain SSL Certificates for Apache<\/h3>\n
\n
\n
Verify SSL Installation:<\/h4>\n
https:\/\/yourdomain.com<\/code> to confirm SSL is active.<\/p>\nStep 3: Obtain SSL Certificates for NGINX<\/h3>\n
Verify SSL Installation:<\/h4>\n
https:\/\/yourdomain.com<\/code> in your browser to verify SSL is working.<\/p>\nStep 4: Automate SSL Certificate Renewal<\/h3>\n
Check Renewal Process:<\/h4>\n
Set Up Auto-Renewal with Crontab:<\/h4>\n
Explanation:<\/h4>\n
\n
Step 5: Custom Auto-Renewal Script (Optional)<\/h3>\n
Create the Script:<\/h4>\n
\ncertbot renew –quiet
\nsystemctl reload apache2
\nsystemctl reload nginx<\/p><\/blockquote>\nSchedule the Script:<\/h4>\n
Step 6: Troubleshooting SSL Issues<\/h3>\n
\n
\n
\n
\nSecurity Best Practices<\/h3>\n
\n
\nConclusion<\/h3>\n