I’m using CentOS 6.7 and certbot doesn’t work in auto mode on it yet so I used the webroot method to get a certificate and it was successful. I now have cert file in /etc/letsencrypt/mydomain/fullchain.pem
Now what do I do with the certificate? How do I move my domain to https? I found a lot of tutorials on obtaining a certificate but nothing on using it. Am I missing something?
Basically you just need to modify your web configuration. You don’t provide any information on what you are using though. Apache ? nginx ? do you have a control panel ? cpanel ? ISPconfig ? something else ?
You should have all the files in /etc/letsencrypt/live/domain
https://mozilla.github.io/server-side-tls/ssl-config-generator/ can provide a good example file for your configuration (depending if you want high security, and only the latest browsers, or a slightly lower security and allow older browsers to connect )
cert.pem is the certificate file
privkey.pem is the certificate key file
chain.pem and fullchain.pem are the chain file ( depending on your version of apache you need either the chain or fullchain )
If you have Apache version 2.4.8 or newer you can set SSLCertificateFile to fullchain.pem and not have a SSLCertificateChainFile at all
If your Apache version is older than 2.4.8 then you must set SSLCertificateFile to cert.pem and set SSLCertificateChainFile to chain.pem
In both cases you also need SSLCertificateKeyFile to point to the private key privkey.pem
If you’re not sure what Apache version you have, use the older way, new Apache is backwards compatible, and you can switch to the new way when you know for sure you’ve upgraded to a new enough version.