LetsEncrypt certificate using ZeroSSL tools
We aggregate and tag open source projects. We have collections of more than one million projects. Check out the projects section.
Let’s Encrypt is a free, automated, and open Certificate Authority. It uses ACME protocol to validate your domain. If you have complete control over your domain, you can get a certificate for free. In order to provide secure access to your public network like HTTPS, LDAPS etc you need a certificate from a Certificate Authority. The cost of the certificate range from 10$ to 100$. If you want a wildcard certificate then it may cost more. The certificate is valid for one year and you need to pay and renew every year. Let's Encrypt comes for the rescue. You can create and renew certificate for few.
The certificate from Let's Encrypt is valid for 90 days and you need to renew it. The entire process is automated. There are few providers who has online tools to generate certificate. One such tool is ZeroSSL and in this article we are going to discuss generating certificate using ZeroSSL online tool.
- Provide your domain name
- Accept terms and condition
- Click next, CSR will be generated
- Click next, Account key will be generated. This is a private key, which identifies your account.
- Copy or download account key and CSR
- Select HTTP or DNS verification and Click next
- If HTTP verification is selected, a file will be provided which has to be dropped in your webserver. Once done, click the link to verify
- If DNS verification is selected, DNS text record and value will be provided which should be added in your DNS. Wait for 15 to 20 minutes, so that DNS changes will get reflected. Click next to verify.
- You got the certificate.
- Download the certificate and domain key.
- Rename certificate file as <your-domain>-certificate.crt and domain key file as <your-domain>-privatekey.key
- Keep these file safe.
We are in a deliberate need to secure our systems and we need SSL certificate. I can use self-signed certificate but others will not accept it. This is forcing every one to buy a one. The certificate providers are providing other ancillary services for the money they charge. For some one who require just a certificate and doesn't bother of renewing it every 90 days then you can certainly choose Lets Encrypt.
I sincerely thank and appreciate the effort of Lets Encrypt.