Find the Best Cosmetic Hospitals

Explore trusted cosmetic hospitals and make a confident choice for your transformation.

โ€œInvest in yourself โ€” your confidence is always worth it.โ€

Explore Cosmetic Hospitals

Start your journey today โ€” compare options in one place.

How SSL/TLS Certificates Work: Setup & Manual Renewal using acme.sh

Here’s a well-structured and comprehensive tutorial based on your notes, with added explanations, examples, and a professional tone suitable for blog publication or internal documentation.


๐Ÿ“œ SSL/TLS Website Certification: How It Works and How to Set It Up & Renew with acme.sh

๐Ÿ”– Suggested Titles

  • โ€œHow SSL/TLS Certificates Work: Setup & Manual Renewal using acme.shโ€
  • โ€œThe Ultimate Guide to Website Certificates: From CSR to HTTPSโ€
  • โ€œSSL for Beginners: Certificate Authorities, CSR, PEM, CRT, and acme.sh Explainedโ€

๐Ÿงฉ Introduction: Why Are SSL Certificates Important?

SSL (Secure Socket Layer) or more accurately TLS (Transport Layer Security) certificates are digital certificates used to secure communication between a website and its visitors. They enable HTTPS, encrypting data in transit, protecting it from eavesdroppers, and establishing trust and security with users.

When a user sees a ๐Ÿ”’ lock icon in their browser, it means:

  • The website has a valid certificate.
  • The identity of the server is verified.
  • All communication is encrypted.

๐Ÿข Certificate Authorities (CA) and How They Work

What is a Certificate Authority (CA)?

A Certificate Authority (CA) is a trusted organization that verifies your domain identity and issues digital certificates.

Popular CAs include:

  • GoDaddy (Paid) โ€“ Valid for 1 year
  • Let’s Encrypt (Free) โ€“ Valid for 90 days (auto-renewable)

CA Examples

Certificate AuthorityTypeValidityCostAutomation
GoDaddyPaid1 Year๐Ÿ’ต YesAuto/manual
Let’s EncryptFree90 DaysโŒ FreeAuto/manual

๐Ÿ” Public & Private Key Concept

The security of SSL is based on public-key cryptography:

  • Private Key (PEM): Stays secure on your server.
  • Public Key (CSR): Sent to CA to request a certificate.

๐Ÿ”„ SSL Certificate Issuance: Manual Flow Explained

Step-by-step Process:

  1. Generate a Private Key (PEM) using OpenSSL.
  2. Generate a Certificate Signing Request (CSR) using that PEM.
  3. Submit the CSR to a Certificate Authority (CA).
  4. CA verifies ownership and returns a .crt certificate file.
  5. You configure the web server (Apache, Nginx, etc.) with:
    • certificate.crt
    • private.pem (your private key)
# Example: Generate PEM & CSR using OpenSSL
openssl genrsa -out private.pem 2048
openssl req -new -key private.pem -out domain.csr
Code language: PHP (php)

๐Ÿ› ๏ธ How to Set Up Let’s Encrypt with or without cPanel

Using cPanel (Auto)

Most modern hosting providers integrate Let’s Encrypt, allowing 1-click SSL and auto-renewal every 60โ€“80 days.

Check your cPanel under “SSL/TLS” or “Let’s Encrypt SSL” to activate.


Without cPanel (Manual โ€“ acme.sh)

Letโ€™s Encrypt also provides a manual option using acme.sh, a powerful shell script for managing SSL.


โš™๏ธ Manual SSL with acme.sh โ€” Step-by-Step

โœ… Step 1: Install acme.sh

curl https://get.acme.sh | sh
source ~/.bashrc
Code language: PHP (php)

โœ… Step 2: Issue a Certificate

acme.sh --issue -d yourdomain.com -w /path/to/webroot

Replace /path/to/webroot with your actual document root directory.

โœ… Step 3: Install the Certificate

acme.sh --install-cert -d yourdomain.com \
--key-file /etc/ssl/private.pem \
--fullchain-file /etc/ssl/certificate.crt
Code language: PHP (php)

๐Ÿ” Renewal Instructions

Since Let’s Encrypt certs are valid for 90 days, renew regularly:

acme.sh --renew -d yourdomain.com --force
Code language: CSS (css)

To automate it with cron (every month on 4th):

0 2 4 * * "/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" > /dev/null
Code language: JavaScript (javascript)

๐Ÿ” Bonus Tips

  • Always back up your private.pem and certificate.crt files.
  • Reload your web server after applying new certificates: sudo systemctl reload nginx # or apache2

๐Ÿ“Œ Conclusion

Whether you’re a developer, DevOps engineer, or system administrator, understanding how certificate authorities and SSL certificates work is essential to secure web traffic.

For ease and automation, use Let’s Encrypt + acme.sh. For extended validation or more control, go with GoDaddy or other paid CAs.


Find Trusted Cardiac Hospitals

Compare heart hospitals by city and services โ€” all in one place.

Explore Hospitals
I'm Rajesh Kumar, a DevOps, SRE, DevSecOps, Cloud, and Platform Engineering expert passionate about sharing practical knowledge, real-world experiences, and industry best practices. I have worked at Cotocus and regularly write about technology, travel, investing, health, product reviews, and digital marketing through my various platforms. I publish technical articles at DevOps School, travel stories at Holiday Landmark, stock market insights at Stocks Mantra, health and fitness guidance at My Medic Plus, product reviews at TrueReviewNow, and SEO and digital marketing strategies at Wizbrand.

Related Posts

Top 10 AI SEO Tools in 2026: Features, Pros, Cons & Comparison

Introduction In 2026, AI SEO tools have become indispensable for digital marketers, businesses, and content creators aiming to dominate search engine rankings. These tools leverage artificial intelligence…

Read More

Top 10 Product Lifecycle Management (PLM) Tools in 2026: Features, Pros, Cons & Comparison

Introduction Product Lifecycle Management (PLM) is a strategic approach to managing a productโ€™s journey from conception through design, manufacturing, and end-of-life. In 2026, PLM software has evolved…

Read More

Top 10 Patch Management Tools in 2026: Features, Pros, Cons & Comparison

Introduction: The Importance of Patch Management in 2026 In 2026, as cyber threats evolve and technology becomes more complex, patch management tools are critical for maintaining cybersecurity…

Read More

Top 10 Headless CMS Tools in 2026: Features, Pros, Cons & Comparison

Introduction In 2026, Headless Content Management Systems (CMS) have become the go-to solution for businesses seeking flexibility, scalability, and a modern approach to content management. Unlike traditional…

Read More

Top 10 AI Lead Scoring Tools in 2026: Features, Pros, Cons & Comparison

Introduction In 2026, AI lead scoring tools have become indispensable for B2B and B2C businesses aiming to optimize their sales pipelines. These tools leverage artificial intelligence to…

Read More

Top 10 AI Portfolio Optimization Tools in 2026: Features, Pros, Cons & Comparison

Introduction Investment management has always been about making smart choices at the right time. Traditionally, this required endless hours of research, manual calculations, and intuition. But in…

Read More
Subscribe
Notify of
guest
0 Comments
Newest
Oldest Most Voted
0
Would love your thoughts, please comment.x
()
x