Last post I mentioned how easy it was to setup SSL with AWS Certificate Manager.
But what about all your other servers? Are we going to cough up $16 per year for a single-domain SSL certificate from Gandi?
Let’s talk about Let’s Encrypt. I downloaded their Linux version and got down to business.
Here is a running tally of my steps.
- Google “nginx letsencrypt” and find this DigitalOcean guide.
- Stop my nginx server to free up port 80, which is used in the letsencrypt process.
- run $ ./letsencrypt-auto certonly –standalone
- Enter my domain name.
- Make 15 seconds worth of changes to my server blocks in nginx.
- Redirect port 80 -> 443
- Setup a block for port 443 SSL, all in the guide
- $ sudo service nginx start
It took 5 minutes to fully setup.
I love it when life is stupid easy.