Installing Certbot SSL

spaceCowboy · June 28, 2016, 4:14pm

Anyone have experience using Certbot to generate their .crt? I’m looking for my webroot and unfortunately don’t see it anywhere (checked /usr/share/, /etc/, and /var/). Is there any guidance on installing a Let’s Encrypt cert?

blake · July 13, 2016, 5:50pm

We’re going to add native support for Let’s Encrypt certs very soon. Watch this space!

swaraj · August 2, 2016, 12:10am

+1 on this, I’m currently manually renewing our Let’s Encrypt certs every 3 months for every external domain.

spaceCowboy · August 2, 2016, 3:25pm

I’m curious if anyone’s tried looking at the way this was solved for a [Heroku app] (https://community.letsencrypt.org/t/lets-encrypt-and-heroku-solved/4272/21).

Or could the [cloudfoundry] (https://github.com/bsyk/cf-letsencrypt) option work?

thomas · August 2, 2016, 5:14pm

Hi there!

I have good news! Support for Let’s Encrypt shipped on Aptible’s backend today, and the frontend is practically ready (see: https://github.com/aptible/dashboard.aptible.com/pull/640). The official release will most likely happen late this week or early next week.

If you’d like to get early access to this feature, we can set it up for you in the backend (i.e. without using the Dashboard). If that’s your case, please contact us via http://contact.aptible.com. To be clear: this is a fully managed option. Once enabled, we’ll provision and automatically renew and install your certificates.

Thanks for your interest!

thomas · August 3, 2016, 6:15pm

We’ve released Let’s Encrypt support in the Dashboard a little earlier today!

To get started, you can navigate to the Endpoints tab for the app of your choice, and create a New Endpoint of type “Managed HTTPS”. Then, just follow the steps on screen.

This setup is a one-time thing. As soon as the Endpoint is set up, we’ll take care of automatically renewing the cert, etc.

Do note a few restrictions:

Currently, you can’t upgrade an existing endpoint to use Let’s Encrypt. If you have an existing endpoint you’d like to upgrade to use Let’s Encrypt, see below.
Each Managed HTTPS endpoint can only serve one domain (doing otherwise makes renewal risky for us; this is something we might add in the future, but it’s not available now). If you have multiple domains you want to use Let’s Encrypt with, you’ll need to set up one Endpoint for each of them.

If you have an existing Endpoint you want to use Let’s Encrypt with, you should:

Create a new Endpoint for the domain (or one Endpoint for each domain) the app is using.
Select Managed HTTPS, and choose a transitional certificate (the certificate you’re currently using).
Follow the steps on screen.

We’ll have an official announcement out later this week! In the meantime, feel free to let us know here if you hit any snags / have any questions!

Topic		Replies	Views
Lets Encrypt Wildcard SSL Cert Support Product/Feature Requests	3	1097	May 23, 2018
Certificate Transparency for Managed HTTPS endpoints	2	921	April 26, 2018
Managed TLS with Cloudflare Use Cases cloudflare , endpoints , deployment	1	426	December 23, 2021
CloudFormation Template Validation Method How-Tos	1	520	February 2, 2023

Installing Certbot SSL

Related Topics