{"id":17,"date":"2023-12-17T11:31:00","date_gmt":"2023-12-17T09:31:00","guid":{"rendered":"https:\/\/typo3demosite.com\/?p=17"},"modified":"2025-02-13T00:34:05","modified_gmt":"2025-02-12T22:34:05","slug":"using-certbot-tool-to-secure-nfinx-servers","status":"publish","type":"post","link":"https:\/\/typo3demosite.com\/?p=17","title":{"rendered":"Using Certbot tool to secure Nginx servers"},"content":{"rendered":"\n

One of the most popular tools for automating the process of obtaining and renewing Let\u2019s Encrypt SSL certificates is the Certbot<\/a>. Installing Certbot on recent Linux distributions is straightforward, and it integrates seamlessly with Apache web servers, making SSL management a breeze.<\/p>\n\n\n\n

However, using Certbot with Nginx web servers has to be more challenging. While obtaining an SSL certificate with Nginx can be done semi-manually, the real difficulty arises during the renewal process, which often requires manual intervention. This can make managing SSL certificates on Nginx servers more time and attention demanding. At least I was thinking in this way before today.<\/p>\n\n\n\n

It turned out that there is dedicated Certbot plugin for Nginx. To install it with apt just run:<\/p>\n\n\n\n

<\/circle><\/circle><\/circle><\/g><\/svg><\/span><\/path><\/path><\/svg><\/span>
sudo apt install certbot python3-certbot-nginx<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n
or with yum based distros just call:<\/p>\n\n\n\n
<\/circle><\/circle><\/circle><\/g><\/svg><\/span><\/path><\/path><\/svg><\/span>
sudo yum install certbot-nginx<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n
However, the latter will only work with installed when installed from EPEL repository.<\/p>\n\n\n\n
When everything is setup just make certificate review in a following way:<\/p>\n\n\n\n
<\/circle><\/circle><\/circle><\/g><\/svg><\/span><\/path><\/path><\/svg><\/span>
sudo certbot --nginx -d typo3demosite.com -d www.typo3demosite.com<\/span><\/span><\/code><\/pre><\/div>\n\n\n\n
And that’s it! Just do not forged if Certbot’s cron task for automated certificates renewal works too.<\/p>\n","protected":false},"excerpt":{"rendered":"
One of the most popular tools for automating the process of obtaining and renewing Let\u2019s […]<\/p>\n","protected":false},"author":1,"featured_media":35,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10,9],"tags":[],"class_list":["post-17","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","category-nginx"],"_links":{"self":[{"href":"https:\/\/typo3demosite.com\/index.php?rest_route=\/wp\/v2\/posts\/17","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/typo3demosite.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/typo3demosite.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/typo3demosite.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/typo3demosite.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=17"}],"version-history":[{"count":4,"href":"https:\/\/typo3demosite.com\/index.php?rest_route=\/wp\/v2\/posts\/17\/revisions"}],"predecessor-version":[{"id":70,"href":"https:\/\/typo3demosite.com\/index.php?rest_route=\/wp\/v2\/posts\/17\/revisions\/70"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/typo3demosite.com\/index.php?rest_route=\/wp\/v2\/media\/35"}],"wp:attachment":[{"href":"https:\/\/typo3demosite.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=17"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/typo3demosite.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=17"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/typo3demosite.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=17"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}