Apply for an SSL Certificate for a Host Using ACME

ServBay supports automatically applying for SSL certificates for hosts using the ACME protocol. This is a convenient and secure way to manage SSL certificates. However, there are some prerequisites for using the ACME method: you need to ensure that your local machine can be accessed from the internet, that ports 80 and 443 are open, and that the domain name correctly points to your local machine. This article will introduce how to apply for SSL certificates using the ACME method in ServBay.

TIP

By default, ServBay will first try to issue a certificate using Let's Encrypt. If the issuance is unsuccessful, it will automatically try to use ZeroSSL.

Prerequisites

Before applying for an SSL certificate using the ACME method, please ensure that the following conditions are met:

1. Internet Access: Your local machine must be accessible from the internet.
2. Port Opening: Ensure that ports 80 (HTTP) and 443 (HTTPS) are open and accessible.
3. Domain Resolution: Your domain name must correctly point to the IP address of the local machine.

Step 1: Configure Domain and Ports

1. Domain Resolution

   Ensure that your domain name (e.g., servbay.demo) correctly points to the IP address of the local machine. You can accomplish this by modifying the DNS settings of your domain provider.

2. Port Opening

   Ensure that your router and firewall settings allow external access to ports 80 and 443. You can use the following command to check if the ports are open:

   sudo lsof -iTCP -sTCP:LISTEN -P | grep ':80\|:443'

   Ensure that the output includes the listening status of ports 80 and 443.

Step 2: Apply for an SSL Certificate Using ACME in ServBay

1. Open ServBay Management Panel

   Launch the ServBay application and enter the management panel.

2. Add a Host

   Select the Host option in the management panel.

3. Choose SSL Certificate Issuance Method

   During the process of adding a host, you will see an option to choose the SSL certificate issuance method. Select Caddy.

4. Enter User’s Email Address

   Enter your email address in the corresponding input field. This email address will be used to receive notifications related to the SSL certificate.

5. Set Up Domain Name

   Enter your domain name (e.g., servbay.demo) in the domain name field.

6. Complete Adding Host

   Follow the prompts to complete the process of adding the host. At this point, ServBay will use the ACME protocol through Caddy to automatically apply for and configure the SSL certificate for your host. By default, ServBay will first try to use Let's Encrypt. If the issuance is unsuccessful, it will automatically try to use ZeroSSL.

Verify Configuration

After completing the above steps, you can access the configured host through a browser. If the configuration is correct, the browser’s address bar should display a secure lock icon, indicating a trusted SSL certificate is in use.

Summary

By using the ACME method, you can automatically apply for and configure SSL certificates in ServBay. This method simplifies the certificate management process and ensures that your website always uses the latest SSL certificates. Remember that the prerequisites for using the ACME method are that your local machine must be accessible from the internet, ports 80 and 443 must be open, and the domain name correctly points to the local machine.

I hope this article helps you successfully configure SSL certificates using the ACME method and ensures the security and reliability of your website.