Digital Ocean: How To Install Let’s Encrypt on WordPress Droplet

No Comments

Hello guys , I am Back with another article related to digital ocean. Today I will Let you know how to install let’s encrypt on WordPress Droplet.

 

How To Install Let's Encrypt (SSL) on Digital Ocean WordPress Droplets

 

You all read my previous article in which How to Install WordPress and map domain on the digital ocean you can also read from here. Today I will let you all know how to install let’s encrypt or HTTPs Secured WordPress droplet on digital ocean.

As we all know if our domain is not https secured then it won’t be secure for any browser. You can run your site with HTTP too but as HTTPs is much better than HTTP then you should go for it.

What is HTTPs?

HTTPs is the Hypertext Transfer Protocol Secure is an extension which secures the communication between two networks or we can say over a computer network. In HTTPS, Communication is encrypted using Transport Layer Security or TLS, or Secure Sockets Layer (SSL). The Protocol is Therefore also often referred to as HTTP over TLS or over SSL.

Formerly HTTPS Connections only used for payments Websites or Governmental Websites where sensitive data were saved with all information systems on the World Wide Web. Now all the website developers are using HTTPS connections for their websites to secure their information and data from malware and other hackers.

What is Let’s Encrypt?

Let’s Encrypt is a Certificate Authority (CA) which only offers Lifetime Free SSL certificates which are just as secure as current paid certificates. This project made encrypted connections the default standard throughout the Internet.

We can trust in Let’s Encrypt as much as on Paid SSL Certificates because it works on the same premise as other paid certificates. Let’s Encrypt installation easier than others and works on various marketplaces. Many Government and Banking Agencies are using Let’s Encrypt for securing their working websites and official Websites to secure their data and information from malware and vulnerabilities.

Some features of Let’s Encrypt SSL Certificate:

  1. Validation Type- DV( Domain Validated)
  2. Issuance- 2 Hours -3 Hours
  3. Server Licensing- Unlimited
  4. Reissue- Available
  5. Up to 100 Subdomains can be registered per certificate
  6. Trusted by Maximum Famous sites worldwide.
  7. 99.8% browser compatibility
  8. Strongest SSL Encryption

How to Install Let’s Encrypt SSL Certificate in very Easy Way?

After Installing your WordPress on digital ocean and mapping your domain on the droplet you have to secure your website which is installed on the digital ocean web server with Lt’s Encrypt SSL Certificate.

You need to follow these below steps:

Go to your Droplet Dashboard.

Like the above screenshot, you have to go to access console. And In the access console, you need to type your root username and root password as you have reset for the first time. After doing this you will be logged into your droplet console.
Now you have to download Let’s Encrypt Certificate for your website by doing some coding. It’s not very hard it’s easy but it might start again if you are slow in typing and the session will be restarted and you have to login again then do it all again.

For installing Let’s Encrypt Package you need to type some codes like below:

First Step for using Let’s Encrypt to install an SSL Certificate is to install the certbot software on the Server of Digital Ocean WordPress Droplet. Certbot Developers maintain their own software repository with up-to-date versions of the software.

Firstly Add the repository,

$ sudo add-apt-repository ppa:certbot/certbot

Now You have to press Enter Button. After this, the package list will be updated to pick up the new repository’s package information:

$ sudo apt-get update

And after this finally, you can install Certbot from the new repository with apt-get :

$ sudo apt-get install python-certbot-apache

The Certbot Let’s Encrypt is now ready for use.

 

Set Up the SSL Certificate

For generating the SSL for Apache by using the Certbot Let’s Encrypt is quite straightforward. The Certbot will automatically obtain and install new SSL Certificate that is valid only for the domains provided as for parameters. To install and obtain a certificate that covers only a single domain you need to run the certbot command with:

$ sudo certbot –apache -d yourdomain.com

If you need to install a single SSL Certificate which is valid for multiple domains or subdomains, you can pass them as additional parameters to the command. The first domain name in the list of parameters will be the base domain for the certificate installation which is used by Let’s Encrypt to create the certificate and for that reason We recommend that you pass the bare top-level domain name as in the first in the list of parameters, followed by any additional aliases.

$ sudo certbot –apache -d example.com -d www.yourdomain.com

For this, your base domain will be yourdomain.com.

Next, you will be asked to provide an email address for lost key and notices for the expiration of the certificate and you will need to agree to the Let’s Encrypt terms of service. You will then be asked to choose between both HTTP and HTTPS access or you can force all HTTP requests to redirect permanently to HTTPS and 301 Permanent redirections.

When your installation is finished, you should be able to find the generated certificate files at etc/letsencrypt/live. You can verify the status of your SSL Certificate at following link with your base domain as like:

https://www.ssllabs.com/ssltest/analyze.html?d=yourdomain.com&latest

You can now able to access your site using an HTTPS Prefix.

 

Verifying Certbot Auto-Renewal

Let’s Encrypt certificates works only for 3 months. However, it is free for a lifetime but renews automatically and installed automatically as it has installed automatic software certbot which scans systems two times in a day and runs a command certbot renew daily two times with a system timer. On non-system distributions, this functionality is provided by a cron script which is placed in /etc/cron.d. The task runs two times daily and will renew any certificate that’s within thirty days of expiration.

To test the renewal process, you can do a dry run with certbot:

$ sudo certbot renew –dry-run

If you will see no errors, everything will be fine. If necessary, certbot will renew your certificates and reload apache servers to pick up the changes. If the automatic renewal process fails, Let’s encrypt will send a message to the email you have provided in above step and warning you that your SSL Certificate is about to expire.

 

Wrapping Up!!

Today we have learned that how to secure our wordpress droplets by using Let’s Encrypt SSL Certificate and install it on WordPress Droplet.

Thank You!!

Stay Tuned I will be back with another Technology Related Article next Week.

Must Read:

How to Install WordPress on Digital Ocean
How to secure our web content with DMCA
How to secure our WordPress Websites after hacking.

Vivek Tripathi is the Lead R&D of Editsoft Digital. He is into IT Department of Digital Marketing for almost 2 years. His core areas of interests are Hosting Management, Wordpress Management, Security Configuration, Shopify, Digital Ocean, Graphic Designing, HTML Designing, Marketing Automation, ECommerce Web Development, Dropshipping Marketing,Hacking Support, Wordpress Web Development, Amazon SES, Amazon EC2 and Search Engine Optimization.

About us and this blog

We are a digital marketing company with a focus on helping our customers achieve great results across several key areas.

Request a free quote

We offer professional SEO services that help websites increase their organic search score drastically in order to compete for the highest rankings even when it comes to highly competitive keywords.

Subscribe to our newsletter!

About Author

Vivek Tripathi

Vivek Tripathi is the Lead R&D of Editsoft Digital. He is into IT Department of Digital Marketing for almost 2 years. His core areas of interests are Hosting Management, Wordpress Management, Security Configuration, Shopify, Digital Ocean, Graphic Designing, HTML Designing, Marketing Automation, ECommerce Web Development, Dropshipping Marketing,Hacking Support, Wordpress Web Development, Amazon SES, Amazon EC2 and Search Engine Optimization.

More from our blog

See all posts