Setup SSL certificate with Let's Encrypt and EnterMediaDb

To use a Let's encrypt free 3 month SSL certificate within your EnterMedia instance we recommend that you install the Certbot tool for Nginx. Certbot should implement all the required configuration settings into your NGINX conf file, it should look something like this:

 #Listen 443 port server { listen 443 ssl; server_name; ssl_certificate /etc/letsencrypt/live/; ssl_certificate_key /etc/letsencrypt/live/; location / { proxy_max_temp_file_size 2048m; proxy_read_timeout 1200s; proxy_send_timeout 1200s; proxy_connect_timeout 1200s; client_max_body_size 100G; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Host $http_host; proxy_pass http://server_location; } } #Redirects 80 Port to 443 server { listen 80; server_name; return 301 https://$host$request_uri; } upstream server_location { least_conn; server localhost:8080; #or use Docker Local IP #server; } 

Restart the NGINX service in order to establish the new configuration:

 $ sudo service nginx restart 

Additionally, you can setup a cron job to renew the certificate. We recommend running the renew script every month. Setting up a cron job for the root user can be accomplished like this:

 30 2 * * 1 certbot renew >> /var/log/le-renew.log