How to Install LetsEncrypt Free SSL Certs on CentOS 7 & VestaCP

Article

How to Install LetsEncrypt Free SSL Certs on CentOS 7 & VestaCP

This guide explains how to enable free SSL certs via CentOS 7 and VestaCP.

Via root SSH user: (replace the example.com host with your own domain)

yum install epel-release
yum install certbot-nginx
certbot --nginx -d example.com -d www.example.com

Increate security level:

openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048
nano /etc/nginx/nginx.conf

Paste in the http { block:
ssl_dhparam /etc/ssl/certs/dhparam.pem;

Automate renewals:

crontab -e

Paste:
15 3 * * * /usr/bin/certbot renew --quiet

Source:

https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-centos-7