{"id":31638,"date":"2019-11-30T13:52:02","date_gmt":"2019-11-30T19:52:02","guid":{"rendered":"https:\/\/www.rosehosting.com\/blog\/?p=31638"},"modified":"2022-09-28T09:52:33","modified_gmt":"2022-09-28T14:52:33","slug":"how-to-install-lets-encrypt-with-apache-on-centos-7","status":"publish","type":"post","link":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/","title":{"rendered":"How to Install Let&#8217;s Encrypt with Apache on CentOS 7"},"content":{"rendered":"<div id=\"bsf_rt_marker\"><\/div>\r\n<figure class=\"wp-block-image\"><img decoding=\"async\" width=\"742\" height=\"372\" class=\"wp-image-32224\" src=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg\" alt=\"\" srcset=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg 742w, https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7-300x150.jpg 300w, https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7-150x75.jpg 150w\" sizes=\"(max-width: 742px) 100vw, 742px\" \/><\/figure>\r\n\r\n\r\n\r\n<p>In this tutorial, we will show you how to install the Let\u2019s Encrypt client on your <a href=\"https:\/\/www.rosehosting.com\/centos-hosting.html\" target=\"_blank\" rel=\"noopener noreferrer\">CentOS 7 VPS<\/a> and issue an SSL certificate for your domain.<\/p>\r\n\r\n\r\n\r\n<div class=\"wp-block-image\">\r\n<figure class=\"alignright\"><img decoding=\"async\" width=\"140\" height=\"140\" class=\"wp-image-32225\" src=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/setup-install-lets-encrypt-ssl-certificate-for-apache-centos-vps.jpg\" alt=\"\" \/><\/figure>\r\n<\/div>\r\n\r\n\r\n\r\n<p>Improving your website security through <a href=\"https:\/\/www.rosehosting.com\/blog\/why-you-should-use-ssl-on-your-website\/\">SSL encryption<\/a> can increase your visitors\u2019 trust in your website. In the past, setting up SSL encryption on a website was a complicated task. However, Let\u2019s Encrypt is a free and open source certificate authority (CA) that allows obtaining and installing certificates through simple, automated commands. Thanks to them, setting up encryption and increasing the security of your site is made a lot easier. Let\u2019s Encrypt provides a valid SSL certificate for your domain without any cost and can be used for production\/commercial use as well.<\/p>\r\n\r\n\r\n\r\n<p>Let&#8217;s begin with the installation &#8211; it&#8217;s a simple install, and it won&#8217;t take long at all.<\/p>\r\n\r\n\r\n\r\n<p><!--more--><\/p>\r\n\r\n\r\n\r\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_65 counter-hierarchy ez-toc-counter ez-toc-transparent ez-toc-container-direction\">\n<p class=\"ez-toc-title\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-66306367d12fe\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"ez-toc-cssicon\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-66306367d12fe\"  aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Prerequisites\" title=\"Prerequisites\">Prerequisites<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Step-1-Connect-via-SSH-and-Update-the-OS\" title=\"Step 1: Connect via SSH and Update the OS\">Step 1: Connect via SSH and Update the OS<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Step-2-Install-LAMP-Stack\" title=\"Step 2: Install LAMP Stack\">Step 2: Install LAMP Stack<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Step-3-Configure-Apache\" title=\"Step 3: Configure Apache\">Step 3: Configure Apache<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Step-4-Install-Certbot\" title=\"Step 4: Install Certbot\">Step 4: Install Certbot<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Step-5-Obtain-and-Install-SSL-for-Your-Domain\" title=\"Step 5: Obtain and Install SSL for Your Domain\">Step 5: Obtain and Install SSL for Your Domain<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Step-6-Check-Your-SSL-Certificate\" title=\"Step 6: Check Your SSL Certificate\">Step 6: Check Your SSL Certificate<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#Step-7-Set-up-Automatic-Renewal\" title=\"Step 7: Set up Automatic Renewal\">Step 7: Set up Automatic Renewal<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"wp-block-heading\" id=\"h-prerequisites\"><span class=\"ez-toc-section\" id=\"Prerequisites\"><\/span>Prerequisites<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<ul>\r\n<li>For the purposes of this tutorial, we will use a CentOS 7 VPS.<\/li>\r\n<li>Full SSH root access or a user with sudo privileges is also required.<\/li>\r\n<li>A valid domain name pointed to your server&#8217;s IP address. In this tutorial we will use <code>domain.com<\/code>.<\/li>\r\n<\/ul>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"h-step-1-connect-via-ssh-and-update-the-os\"><span class=\"ez-toc-section\" id=\"Step-1-Connect-via-SSH-and-Update-the-OS\"><\/span><span id=\"1-Connect-via-SSH\" class=\"ez-toc-section\">Step 1: Connect via SSH and Update the OS<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p>Connect to your server via SSH as the root user using the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">ssh root@<span style=\"color: #ff0000;\">IP_ADDRESS<\/span> -p <span style=\"color: #ff0000;\">PORT_NUMBER<\/span><\/pre>\r\n\r\n\r\n\r\n<p>Remember to replace \u201c<span style=\"color: #ff0000;\">IP_ADDRESS<\/span>\u201d and \u201c<span style=\"color: #ff0000;\">PORT_NUMBER<\/span>\u201d with your server&#8217;s respective IP address and SSH port number.<\/p>\r\n\r\n\r\n\r\n<p>Before starting with the installation, you will need to update your OS packages to their latest versions. It&#8217;s easy to do, and it won&#8217;t take more than a few minutes.<\/p>\r\n\r\n\r\n\r\n<p>You can do this by running the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">yum update<\/pre>\r\n\r\n\r\n\r\n<p>Once the updates are completed, we can move on to the next step.<\/p>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"h-step-2-install-lamp-stack\"><span class=\"ez-toc-section\" id=\"Step-2-Install-LAMP-Stack\"><\/span>Step 2: Install LAMP Stack<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p>We need to install the <a href=\"https:\/\/www.rosehosting.com\/lamp-hosting\/\">LAMP stack<\/a> on the server. It consists of Linux (which we already have), Apache, MySQL, and PHP. We can install it by running the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">yum install httpd mariadb-server php php-cli php-common<\/pre>\r\n\r\n\r\n\r\n<p>Once all the packages are installed, start the Apache and MariaDB services:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">systemctl start httpd\r\nsystemctl start mariadb<\/pre>\r\n\r\n\r\n\r\n<p>Enable them to start on server boot with the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">systemctl enable httpd\r\nsystemctl enable mariadb<\/pre>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"h-step-3-configure-apache\"><span class=\"ez-toc-section\" id=\"Step-3-Configure-Apache\"><\/span>Step 3: Configure Apache<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p>We need to create a new Apache configuration file. We can create it with the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">nano \/etc\/httpd\/conf.d\/domain.com.conf<\/pre>\r\n\r\n\r\n\r\n<p>Add the following lines:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">&lt;VirtualHost *:80&gt;\r\n    ServerAdmin admin@<span style=\"color: #ff0000;\">domain.com<\/span>\r\n    DocumentRoot \"\/var\/www\/html\"\r\n    DirectoryIndex index.html\r\n    ServerName <span style=\"color: #ff0000;\">domain.com<\/span>\r\n    ErrorLog \"\/var\/log\/httpd\/domain.com.error_log\"\r\n    CustomLog \"\/var\/log\/httpd\/domain.com.access_log\" common\r\n&lt;\/VirtualHost&gt;<\/pre>\r\n\r\n\r\n\r\n<p>Save and close the file.<\/p>\r\n\r\n\r\n\r\n<p>Then, create an <code>index.html<\/code> file for testing purposes with the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">nano \/var\/www\/html\/index.html<\/pre>\r\n\r\n\r\n\r\n<p>Add the following lines:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">&lt;html&gt;\r\nTest - Welcome to The Apache Web Server.\r\n&lt;\/html&gt;<\/pre>\r\n\r\n\r\n\r\n<p>Save the file and change owner of the &#8216;\/var\/www\/html\/index.html&#8217; file to the Apache user so Apache can read the file:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">chown -R apache:apache \/var\/www\/html\/index.html<\/pre>\r\n\r\n\r\n\r\n<p>Remember to change <code>domain.com<\/code> with your actual domain name.<br \/>Now that we have Apache installed we can continue and install <code>certbot<\/code>.<\/p>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"h-step-4-install-certbot\"><span class=\"ez-toc-section\" id=\"Step-4-Install-Certbot\"><\/span>Step 4: Install Certbot<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p>We need to install Certbot and enable the <code>mod_ssl<\/code> Apache module on the server. Certbot is a simple and easy to use tool that simplifies server management by automating obtaining certificates and configuring web services to use them.<\/p>\r\n\r\n\r\n\r\n<p>By default, Certbot package is not available in the CentOS 7 default OS repository. We need to enable the EPEL repository, then install Certbot.<\/p>\r\n\r\n\r\n\r\n<p>To add the EPEL repository run the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">yum install epel-release<\/pre>\r\n\r\n\r\n\r\n<p>Once enabled, install all the required packages with the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">yum install certbot python2-certbot-apache mod_ssl<\/pre>\r\n\r\n\r\n\r\n<p>Once installed, we can proceed to the next step.<\/p>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"h-step-5-obtain-and-install-ssl-for-your-domain\"><span class=\"ez-toc-section\" id=\"Step-5-Obtain-and-Install-SSL-for-Your-Domain\"><\/span>Step 5: Obtain and Install SSL for Your Domain<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p>Now that Certbot is installed, you can use it to obtain and install an SSL certificate for your domain.<\/p>\r\n\r\n\r\n\r\n<p>Simply run the following command to obtain and install an SSL certificate for your domain:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">certbot --apache -d <span style=\"color: #ff0000;\">domain.com<\/span><\/pre>\r\n\r\n\r\n\r\n<p>We can also install a single certificate for multiple domains and subdomains hosted on the server with the &#8216;-d&#8217; flag, e.g.:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">certbot --apache -d <span style=\"color: #ff0000;\">domain.com<\/span> -d www.<span style=\"color: #ff0000;\">domain.com<\/span> -d <span style=\"color: #ff0000;\">domain2.com<\/span> -d <span style=\"color: #ff0000;\">test.domain2.com<\/span><\/pre>\r\n\r\n\r\n\r\n<p>We will be asked to provide an email address and agree to the terms of service.<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">Saving debug log to \/var\/log\/letsencrypt\/letsencrypt.log\r\nPlugins selected: Authenticator apache, Installer apache\r\nEnter email address (used for urgent renewal and security notices) (Enter 'c' to\r\ncancel): admin@domain.com\r\nStarting new HTTPS connection (1): acme-v02.api.letsencrypt.org\r\n\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nPlease read the Terms of Service at\r\nhttps:\/\/letsencrypt.org\/documents\/LE-SA-v1.2-November-15-2017.pdf. You must\r\nagree in order to register with the ACME server at\r\nhttps:\/\/acme-v02.api.letsencrypt.org\/directory\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n(A)gree\/(C)ancel: A\r\n\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nWould you be willing to share your email address with the Electronic Frontier\r\nFoundation, a founding partner of the Let's Encrypt project and the non-profit\r\norganization that develops Certbot? We'd like to send you email about our work\r\nencrypting the web, EFF news, campaigns, and ways to support digital freedom.\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n(Y)es\/(N)o: N\r\nStarting new HTTPS connection (1): supporters.eff.org\r\nObtaining a new certificate\r\nPerforming the following challenges:\r\nhttp-01 challenge for domain.com\r\nWaiting for verification...\r\nCleaning up challenges\r\nCreated an SSL vhost at \/etc\/httpd\/conf.d\/domain.com-le-ssl.conf\r\nDeploying Certificate to VirtualHost \/etc\/httpd\/conf.d\/domain.com-le-ssl.conf<\/pre>\r\n\r\n\r\n\r\n<p>Type Y and hit [Enter], and you should see the following output:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">Please choose whether or not to redirect HTTP traffic to HTTPS, removing HTTP access.\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n1: No redirect - Make no further changes to the webserver configuration.\r\n2: Redirect - Make all requests redirect to secure HTTPS access. Choose this for\r\nnew sites, or if you're confident your site works on HTTPS. You can undo this\r\nchange by editing your web server's configuration.\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nSelect the appropriate number [1-2] then [enter] (press 'c' to cancel): 2<\/pre>\r\n\r\n\r\n\r\n<p>Here, you need to choose any one option to continue. If you choose option 1, it will only download an SSL certificate and you need to configure Apache manually to use SSL certificate. If you choose option 2, it will automatically download and configure Apache to use SSL certificate. In this case, choose option 2 and hit [Enter]. When the installation is successfully finished, you will see a message similar to this:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nCongratulations! You have successfully enabled https:\/\/domain.com<\/pre>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">IMPORTANT NOTES:\r\n- Congratulations! Your certificate and chain have been saved at:\r\n\/etc\/letsencrypt\/live\/domain.com-0001\/fullchain.pem\r\nYour key file has been saved at:\r\n\/etc\/letsencrypt\/live\/domain.com-0001\/privkey.pem\r\nYour cert will expire on 2019-10-22. To obtain a new or tweaked\r\nversion of this certificate in the future, simply run certbot again\r\nwith the \"certonly\" option. To non-interactively renew *all* of\r\nyour certificates, run \"certbot renew\"\r\n- If you like Certbot, please consider supporting our work by:\r\n\r\nDonating to ISRG \/ Let's Encrypt: https:\/\/letsencrypt.org\/donate\r\nDonating to EFF: https:\/\/eff.org\/donate-le<\/pre>\r\n\r\n\r\n\r\n<p>The generated certificate files are available in the <code>\/etc\/letsencrypt\/live\/domain.com<\/code> directory. You can check the newly created SSL certificate with the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">ls \/etc\/letsencrypt\/live\/<span style=\"color: #ff0000;\">domain.com<\/span>\/<\/pre>\r\n\r\n\r\n\r\n<p>You should see the following output:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">cert.pem chain.pem fullchain.pem privkey.pem<\/pre>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"h-step-6-check-your-ssl-certificate\"><span class=\"ez-toc-section\" id=\"Step-6-Check-Your-SSL-Certificate\"><\/span>Step 6: Check Your SSL Certificate<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p>Open your web browser and type the URL <code>https:\/\/domain.com<\/code> .\u00a0 To check the SSL certificate in Chrome, click on the padlock icon in the address bar for https:\/\/<span style=\"color: #ff0000;\">domain.com<\/span> and from the pop-up box, click on &#8216;Valid&#8217; under the &#8216;Certificate&#8217; prompt.<\/p>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\" id=\"h-step-7-set-up-automatic-renewal\"><span class=\"ez-toc-section\" id=\"Step-7-Set-up-Automatic-Renewal\"><\/span>Step 7: Set up Automatic Renewal<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p>By default, Let\u2019s Encrypt certificates are valid for 90 days, so it is recommended to renew the certificate before it expires. Ideally it would be best to automate the renewal process to periodically check and renew the certificate.<\/p>\r\n\r\n\r\n\r\n<p>We can test the renewal process manually with the following command.<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">certbot renew --dry-run<\/pre>\r\n\r\n\r\n\r\n<p>The above command will automatically check the currently installed certificates and tries to renew them if they are less than 30 days away from the expiration date.<\/p>\r\n\r\n\r\n\r\n<p>We can also add a cronjob to automatically run the above command twice a day.<\/p>\r\n\r\n\r\n\r\n<p>To do so, edit the crontab with the following command:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">crontab -e<\/pre>\r\n\r\n\r\n\r\n<p>Add the following line:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-preformatted\">* *\/12 * * * root \/usr\/bin\/certbot renew &gt;\/dev\/null 2&gt;&amp;1<\/pre>\r\n\r\n\r\n\r\n<p>Save and close the file.<\/p>\r\n\r\n\r\n\r\n<p>Congratulations! We have successfully installed and configured Let\u2019s Encrypt with Apache on a CentOS 7 VPS.<\/p>\r\n\r\n\r\n<hr class=\"wp-block-separator\" \/>\r\n\r\n\r\n<div class=\"wp-block-image\">\r\n<figure class=\"alignleft\"><img decoding=\"async\" width=\"140\" height=\"140\" class=\"wp-image-32226\" src=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/get-support-for-managed-centos-vps-install-configure-lets-encrypt-by-admins.jpg\" alt=\"\" \/><\/figure>\r\n<\/div>\r\n\r\n\r\n\r\n<p>Of course, you don&#8217;t have to Install Let\u2019s Encrypt on CentOS 7 if you use one of our <a href=\"https:\/\/www.rosehosting.com\/managed-vps-hosting\/\" target=\"_blank\" rel=\"noopener noreferrer\">managed VPS hosting plans<\/a>, in which case you can simply ask our expert Linux admins to install Let\u2019s Encrypt on your CentOS 7 VPS for you. They are available 24\u00d77 and will take care of your request immediately.<\/p>\r\n\r\n\r\n\r\n<p><span style=\"color: #ff0000;\"><strong>PS<\/strong><\/span>. If you liked this post on <strong>how to Install Let\u2019s Encrypt on CentOS 7<\/strong>, or if you found it helpful, please share it with your friends on social networks using the share buttons, or simply leave a reply below. Thanks.<\/p>\r\n","protected":false},"excerpt":{"rendered":"<p>In this tutorial, we will show you how to install the Let\u2019s Encrypt client on your CentOS 7 VPS and &#8230; <\/p>\n<p class=\"read-more-container\"><a title=\"How to Install Let&#8217;s Encrypt with Apache on CentOS 7\" class=\"read-more button\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#more-31638\" aria-label=\"Read more about How to Install Let&#8217;s Encrypt with Apache on CentOS 7\">Read More<\/a><\/p>\n","protected":false},"author":4,"featured_media":32224,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1699,1703,13],"tags":[37,541,1828],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>How to Install Let&#039;s Encrypt with Apache on CentOS 7 - RoseHosting<\/title>\n<meta name=\"description\" content=\"How to Install Let&#039;s Encrypt with Apache on CentOS 7 - RoseHosting\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Install Let&#039;s Encrypt with Apache on CentOS 7 - RoseHosting\" \/>\n<meta property=\"og:description\" content=\"How to Install Let&#039;s Encrypt with Apache on CentOS 7 - RoseHosting\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/\" \/>\n<meta property=\"og:site_name\" content=\"RoseHosting\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/RoseHosting\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/rosehosting.helpdesk\" \/>\n<meta property=\"article:published_time\" content=\"2019-11-30T19:52:02+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-09-28T14:52:33+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"742\" \/>\n\t<meta property=\"og:image:height\" content=\"372\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Jeff Wilson\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@rosehosting\" \/>\n<meta name=\"twitter:site\" content=\"@rosehosting\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jeff Wilson\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/\"},\"author\":{\"name\":\"Jeff Wilson\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713\"},\"headline\":\"How to Install Let&#8217;s Encrypt with Apache on CentOS 7\",\"datePublished\":\"2019-11-30T19:52:02+00:00\",\"dateModified\":\"2022-09-28T14:52:33+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/\"},\"wordCount\":978,\"commentCount\":2,\"publisher\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg\",\"keywords\":[\"apache\",\"centos 7\",\"Install Let's Encrypt\"],\"articleSection\":[\"CentOS\",\"Security\",\"Tutorials\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/\",\"name\":\"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting\",\"isPartOf\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg\",\"datePublished\":\"2019-11-30T19:52:02+00:00\",\"dateModified\":\"2022-09-28T14:52:33+00:00\",\"description\":\"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting\",\"breadcrumb\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg\",\"contentUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg\",\"width\":742,\"height\":372},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.rosehosting.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to Install Let&#8217;s Encrypt with Apache on CentOS 7\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#website\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/\",\"name\":\"RoseHosting\",\"description\":\"Premium Linux Tutorials Since 2001\",\"publisher\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.rosehosting.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#organization\",\"name\":\"RoseHosting\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png\",\"contentUrl\":\"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png\",\"width\":192,\"height\":192,\"caption\":\"RoseHosting\"},\"image\":{\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/RoseHosting\",\"https:\/\/x.com\/rosehosting\",\"https:\/\/www.linkedin.com\/in\/rosehosting\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713\",\"name\":\"Jeff Wilson\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g\",\"caption\":\"Jeff Wilson\"},\"description\":\"An experienced Linux veteran with many years of experience. Helping other Linux admins with frequent Linux and business-related blog posts on the RoseHosting blog. Techie by choice. Loving nature and travel. Happily married and father of two lovely children.\",\"sameAs\":[\"https:\/\/www.rosehosting.com\",\"https:\/\/www.facebook.com\/rosehosting.helpdesk\"],\"url\":\"https:\/\/www.rosehosting.com\/blog\/author\/jwilson\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting","description":"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/","og_locale":"en_US","og_type":"article","og_title":"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting","og_description":"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting","og_url":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/","og_site_name":"RoseHosting","article_publisher":"https:\/\/www.facebook.com\/RoseHosting","article_author":"https:\/\/www.facebook.com\/rosehosting.helpdesk","article_published_time":"2019-11-30T19:52:02+00:00","article_modified_time":"2022-09-28T14:52:33+00:00","og_image":[{"width":742,"height":372,"url":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg","type":"image\/jpeg"}],"author":"Jeff Wilson","twitter_card":"summary_large_image","twitter_creator":"@rosehosting","twitter_site":"@rosehosting","twitter_misc":{"Written by":"Jeff Wilson","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#article","isPartOf":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/"},"author":{"name":"Jeff Wilson","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713"},"headline":"How to Install Let&#8217;s Encrypt with Apache on CentOS 7","datePublished":"2019-11-30T19:52:02+00:00","dateModified":"2022-09-28T14:52:33+00:00","mainEntityOfPage":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/"},"wordCount":978,"commentCount":2,"publisher":{"@id":"https:\/\/www.rosehosting.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage"},"thumbnailUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg","keywords":["apache","centos 7","Install Let's Encrypt"],"articleSection":["CentOS","Security","Tutorials"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/","url":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/","name":"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting","isPartOf":{"@id":"https:\/\/www.rosehosting.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage"},"image":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage"},"thumbnailUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg","datePublished":"2019-11-30T19:52:02+00:00","dateModified":"2022-09-28T14:52:33+00:00","description":"How to Install Let's Encrypt with Apache on CentOS 7 - RoseHosting","breadcrumb":{"@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#primaryimage","url":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg","contentUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2019\/11\/how-to-install-lets-encrypt-with-apache-on-centos7.jpg","width":742,"height":372},{"@type":"BreadcrumbList","@id":"https:\/\/www.rosehosting.com\/blog\/how-to-install-lets-encrypt-with-apache-on-centos-7\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.rosehosting.com\/blog\/"},{"@type":"ListItem","position":2,"name":"How to Install Let&#8217;s Encrypt with Apache on CentOS 7"}]},{"@type":"WebSite","@id":"https:\/\/www.rosehosting.com\/blog\/#website","url":"https:\/\/www.rosehosting.com\/blog\/","name":"RoseHosting","description":"Premium Linux Tutorials Since 2001","publisher":{"@id":"https:\/\/www.rosehosting.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.rosehosting.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.rosehosting.com\/blog\/#organization","name":"RoseHosting","url":"https:\/\/www.rosehosting.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png","contentUrl":"https:\/\/www.rosehosting.com\/blog\/wp-content\/uploads\/2022\/03\/android-chrome-192x192-1.png","width":192,"height":192,"caption":"RoseHosting"},"image":{"@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/RoseHosting","https:\/\/x.com\/rosehosting","https:\/\/www.linkedin.com\/in\/rosehosting\/"]},{"@type":"Person","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/7ce77a842fa6a9a7f8efa186f2353713","name":"Jeff Wilson","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.rosehosting.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/09271207587f897ab46faaed9b355252?s=96&r=g","caption":"Jeff Wilson"},"description":"An experienced Linux veteran with many years of experience. Helping other Linux admins with frequent Linux and business-related blog posts on the RoseHosting blog. Techie by choice. Loving nature and travel. Happily married and father of two lovely children.","sameAs":["https:\/\/www.rosehosting.com","https:\/\/www.facebook.com\/rosehosting.helpdesk"],"url":"https:\/\/www.rosehosting.com\/blog\/author\/jwilson\/"}]}},"_links":{"self":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts\/31638"}],"collection":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/comments?post=31638"}],"version-history":[{"count":5,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts\/31638\/revisions"}],"predecessor-version":[{"id":43225,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/posts\/31638\/revisions\/43225"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/media\/32224"}],"wp:attachment":[{"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/media?parent=31638"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/categories?post=31638"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.rosehosting.com\/blog\/wp-json\/wp\/v2\/tags?post=31638"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}