Ice Cool Tip #2Got a cool tip? Get in touch
Letsencrypt Free SSL Certificates Offline Validation
03 October 2016
The steps I did to create a free SSL from Letsencrypt from a macbook and then installed onto webserver.
STEP 1. Either in FTP or cPanel create 2 new folders in the root of your Public_HTML directory. First folder is called .well-known. Inside the .well-known folder create the 2nd folder called acme-challenge. Minimize that folder for now you will return to create 2 files later.
STEP 2. On your MAC open Terminal and install homebrew. Run the command
ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"
Leave it to go throught the installation.
STEP 3. Install Certbot. Still in the terminal window type
brew install certbot
STEP 4. Create the certificate. Still in the terminal run the following command obviously changing the domain to that of your own.
sudo certbot certonly –manual -d cooldivi.com -d www.cooldivi.com
STEP 5. Watch the terminal screen closely you will see something like;
http://www.cooldivi.com/.well-known/acme-challenge/weoEFKS-aasksdSKCKEIFIXCNKSKQwa3d35ds30_sDKIS before continuing:
Press any key to continue
Before you press any key to continue, open up your FTP again inside the acme-challenge folder create the file it tells you in the terminal window. So in this case I would create a file called weoEFKS-aasksdSKCKEIFIXCNKSKQwa3d35ds30_sDKIS.
Inside the file i would copy the content weoEFKS-aasksdSKCKEIFIXCNKSKQwa3d35ds30_sDKIS.Rso39djaklj3sdlkjckxmsne3a
STEP 6. You have to create 2 files. one for the www and one for the non-www web address. So repeat step 5 for the non-www address and create the 2nd file with the name from the terminal window. then copy the content inside again with that from the termianl window.
So in this case I would create a file called seoGFXP-dhfgedSKCKEIFIXCNKSKQwa3d35ds30_dFRTH.
Inside the file i would copy the content seoGFXP-dhfgedSKCKEIFIXCNKSKQwa3d35ds30_dFRTH.Rso39djaklj3sdlkjckxmsfg4m
Press any key to continue. Hopefully the process will find the 2 files you have created to authenticate you own the domain and complete successfully.
STEP 7. The certificate on your Mac is installed in /etc/letsencrypt/live/domainname
You will need to copy the cert.pem contents and the privkey.pem content to your Webserver. The easiest way is to open the files in terminal cd /etc/letsencrypt/live/domainname. Then type nano cert.pem. Copy the content.
STEP 8. Open your cPanel SSL settings. Under Install and Manage SSL for your site (HTTPS) paste the cert.pem content into the top box as per the image below. Repeat for the privkey.pem into the 2nd box and click install certificate.
Thats it you should now have the certificate installed and working all being well. If you found this article useful why not spread some social love and share it for others to find it too 🙂 thanks.