How to use Lets Encrypt (Debian / Ubuntu)

Let’s Encrypt is an SSL certificate authority managed by the Internet Security Research Group (ISRG). It utilizes the Automated Certificate Management Environment (ACME) to automatically deploy free SSL certificates that are trusted by nearly all major browsers.

1. Update/Upgrade your system


2. Download and Install Lets Encrypt


3. Download a clone of Let’s Encrypt from the official GitHub repository. /opt is a common installation directory for third-party packages, so let’s install the clone to /opt/letsencrypt:


4. Navigate to the new /opt/letsencrypt directory:


5. Create the certificate

Run Let’s Encrypt with the --standalone parameter. For each additional domain name requiring a certificate, add -d to the end of the command.

If you receive this error, stop your Apache server and try again.

Agree to the Terms of Service and specify if you would like to share your email address with EFF:


If all goes well, you should receive a result like this:


6. Configure your Virtual Host, it should be similar to this, one entry for port 80 and a duplicated block for port 443:


7. Check for the certificated domains:


8. All your certificated sites should be under this path, you also can check with this command:


9. Restart your Apache to apply your changes


10. Test your SSL website use:


For more information: Let’s Encrypt Homepage