Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: Lockandsecure.com

I ran this command:
Follow all of these commands mentioned here

It produced this output:

My web server is (include version):
Nginx

The operating system my web server runs on is (include version):
Cent OS/ Application/ Wordpress

My hosting provider, if applicable, is:
Vultr

I can login to a root shell on my machine (yes or no, or I don’t know):
Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No

Please specify the actual command(s) you ran.

The commands are as per instruction given on the page

service nginx stop

Edit the wordpress_http.conf and wordpress_https.conf Nginx configuration files. Find server_name _ and replace the _ with your domain name.

nano /etc/nginx/conf.d/wordpress_http.conf

Replace the underscore “_” after server_name to your domain name.

server_name example.com www.example.com

nano /etc/nginx/conf.d/wordpress_https.conf

Replace the underscore “_” after server_name to your domain name.

server_name example.com www.example.com`
Step Two: Download Certbot
Since Certbot does not come installed with CentOS 6, you need to obtain a copy of the Certbot package.

wget https://dl.eff.org/certbot-auto
chmod a+x certbot-auto
The certbot-auto package will be downloaded.

Step Three: Obtain and install SSL certificate
Certbot automates the process of obtaining certificates by providing an interactive installer.

./certbot-auto certonly --standalone
The Certbot installer will ask whether to proceed with the download. Enter “Y” to continue. Enter your email when prompted. This will be used to send you notices regarding renewal and security. Enter “A” to agree to the terms of service. Select whether you want to share your email with the Electronic Frontier Foundation. This is optional. Enter the domain names for which you want an SSL certificate separated by a space…

example.com www.example.com
Certbot will obtain your certificate and save the certificate and chain at /etc/letsencrypt/live/example.com. You will need to install these certificates by adding them to them to the Nginx site configuration files. Certbot automates this process.

./certbot-auto --nginx --redirect
Press “Enter” when asked for which names you would like to activate HTTPS. When prompted whether you would like to reinstall an existing certificate or renew, enter “1”. Certbot will update your Nginx site configuration files with the obtained SSL certificate.

Step Four: Update Nginx configuration to force SSL
In order to force the usage of HTTPS, you will need to edit the wordpress_http.conf configuration file.

nano /etc/nginx/conf.d/wordpress_http.conf
Add the following lines to the server block.

if ($scheme = http) {
return 301 https://$server_name$request_uri;
}

service nginx start

./certbot-auto renew

This doesn’t seem to fully answer @bytecamp’s question: for example, that tutorial provides two different options (./certbot-auto certonly --standalone and ./certbot-auto --nginx --redirect), which work in very different ways and would have very different effects on your server. It would be important to know which of these you used and whether it displayed any error message or not.

no, i didn’t get any error in ./certbot-auto certonly --standalone

If you use certonly, then Certbot does not attempt to install the certificate after obtaining it. It’s still your responsibility to edit your web server configuration to refer to the new certificate, or to import the certificate into a control panel if you use one to administer your web site.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.