How do you move from using a Self-Signed Certificate to Let's Encrypt?


#1

I’ve set up a server running Debian Jessie, which currently uses a self-signed certificate. Although this works for my own personal use I’ve hit a point where I want my server to be used by other people. In my application I want to install a Wordpress blog and have friends log in and add content to it, without having plain text passwords sent over the Internet and without them having to manually add a certificate to their certificates list for https to work.

I followed the self-signed certificates page on the Debian wiki: https://wiki.debian.org/Self-Signed_Certificate when I initially created my self-signed certificate. What I want to know is: will the self signed certificate be ignored? Should I follow the certbot installation instructions in my system’s current state? Should I undo the steps I followed to create my self-signed certificate?


#2

No need to change anything, when using the apache plugin certbot will update the existing config to use the new certs.


#3

Thank you cool110. I went ahead and started the set up, but when I ran sudo certbot --apache I got this message
No names were found in your configuration files.
You should specify ServerNames in your config files in order to allow for accurate installation of your certificate. If you do use the default vhost, you may specify the name manually.
Would you like to continue?

I think that my existing self signed certificate was interfering, so I ran these commands to remove it
sudo cp /etc/apache2/sites-available/000-default.conf /etc/apache2/sites-available/000-default.conf.bak20160704
sudo vim /etc/apache2/sites-available/000-default.conf # Removed the virtual host for port 443.
sudo a2dismod ssl # Remove ssl module from apache
sudo service apache2 restart

That worked.


#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.