Renewing Let’s Encrypt SSL/TLS Certificate The Easy Way

These days, who doesn’t enabled HTTPS on their websites? If you are a website owner and you haven’t enabled HTTPS on your website, you may (or even have happened to you already) encounter a decrease in incoming traffic, because since some times back, not only Chrome has shown “Not Secure” logo on its browser but also mobile browser such as iOS Safari has done the same thing – see here for details. As a normal users, typically when they see “Not Secure” tagging, they will leave the website – afraid of the consequences, though not every non-HTTPS website are bad. Ask this to yourself, will you still browse non-HTTP website these days? Most likely no, especially if it’s related or involving transactions (Eg: puchase item online).

iOS 12.2 Safari showing Not Secure jilaxzone.com
On the left is iOS 12.1; On the right is iOS 12.2. Starting iOS 12.2 and above, Safari will tell you any “Not secure” website

Luckily there’s an easy solution and good thing – it’s FREE – from a non-profit certification authority called Let’s Encrypt. Check this link for step by step in case you haven’t applied one to your website.

Really Simple SSL WordPress plugin jilaxzone.com
Easily enable HTTPS on your WordPress website using Really Simple SSL WordPress plugin

This article is for you who have use Let’s Encrypt certificate to enable HTTPS on your website, but looking for a way to renew it.

Let’s Encrypt Certificate – How to renew

Hopefully you are not surprise why Let’s Encrypt Certificate is only lasted for such a short period only – 90 days to be exact, but if you do – I spit out the reasons below, do read them.

Here I’m going to show you how to renew Let’s Encrypt SSL/TLS Certificate easily with only a few command lines, some people instead of calling Let’s Encrypt SSL/TLS Certificate, they go by Let’s Encrypt HTTPS Certificate. Well, they are practically the same in this context.

wordpress on aws lightsail price per month jilaxzone.com
FYI. WordPress on AWS Lightsail is as cheap as US$3.50 per month! You get a VPS for half price of shared-hosting!

For the record, I’m using WordPress hosted on Bitnami (using AWS LightSail), so if you are using something different, the steps below may differ a little bit, especially the path and location, but the commands executed and steps are pretty much the same.

So let’s start renewing Let’s Encrypt HTTPS Certificate.

1) Go to your website (Linux) console and login, either via SSH, Putty or anything else possible.

2) Run the following command to turn off all running services:

/sudo /opt/bitnami/ctlscript.sh stop

You may want to change the path accordingly to your website path.

3) Run the following command to renew existing Let’s Encrypt HTTPS Certificate.

sudo /opt/bitnami/letsencrypt/lego –tls –email=”this_is@email.com” –domains=”jilaxzone.com” –path=”/opt/bitnami/letsencrypt” renew –days 90

You may want to change the path, email and domain accordingly. But stick with 90 days. You can go lower than 90 days but you can’t have higher than 90 days. Let me explain more on this later below.

Note: If you have multiple domains/subdomains, you can add multiple domains and subdomain (as long as they are under one domain).

4) You should see [your domain here] Server responded with a certificate. Which means you have successfully renewed Let’s Encrypt HTTPS Certificate for the next 90 days.

5) Finally, run the following command to turn back on all the services:

/sudo /opt/bitnami/ctlscript.sh start

You may want to change the path accordingly to your website path.

Why Let’s Encrypt HTTPS Certificate only last for 90 days?

The main reasons are these 2:

1) Avoiding damages from key compromises and mi-issuance.

2) To encourage automation, rather than handle manually (the steps given above is the manual way of doing renewal, I shall share how to automate it on the upcoming article)

So they stick with up to 90 days lifetime and not 6 months or 1 year like most paid Certificate Authority does.

Here’s in case you need the official link on reason why only 90 days lifetime: https://letsencrypt.org/2015/11/09/why-90-days.html.


For Life, Tech tips, iOS and Android Apps and Games quick review, do visit below:

https://jilaxzone.com


Hi, thanks for reading my article. Since you are here and if you find this article is good and helping you in anyway, help me to spread the words by sharing this article to your family, friends, acquaintances so the benefits do not just stop at you, they will also get the same goodness and benefit from it.

Thank you!

Leave a Reply

Your email address will not be published. Required fields are marked *

Comment moderation is enabled. Your comment may take some time to appear.