Forums

SSL Cert using Let's Encrypt

I'm trying to create a SSL certificate on Let's Encrypt to add to my website which has a custom domain (from Google Domains - which doesn't look like it will create a certificate).

I haven't had much luck with the guides I've found (eg https://help.pythonanywhere.com/pages/HTTPSSetup). I go to Let's Encrypt and then on to CertBot (I assume using the shell method). If I run a bash console within PythonAnywhere to try follow the steps, I can't install CertBot, which I gather from (https://www.pythonanywhere.com/forums/topic/27527/) isn't the way to do it. From (https://help.pythonanywhere.com/pages/HTTPSCustomCerts/), I create a key and CSR and was at the step to pass my CSR to Let's Encrypt which doesn't look like the way to do it on (https://community.letsencrypt.org/t/my-server-provided-me-csr-to-get-ssl-from-letsencrypt/152371/3).

Did I completely miss something or is PythonAnywhere a provider with HTTPS built in (eg https://certbot.eff.org/hosting_providers)?

Beloved premium user stockbottrades | 4 posts | Nov. 10, 2022, 3:46 a.m. | permalink

Could you tell us more which steps exactly you tried to follow concerning this tutorial? You basically should do this via the UI on the Web page, not in the Bash console.

Staff pafk | 2973 posts | PythonAnywhere staff | Nov. 10, 2022, 9:57 a.m. | permalink

My website has a custom domain and the DNS settings have been done and working. I'm up to the part where it says"...can get a certificate for you using a free service called Let's Encrypt. It's just a couple of clicks...". I also did auto renew parts below, however couldn't find which way to get the certificate within 'Let's Encrypt'.

So within Let's Encrypt I tried a few things but I assume the correct way is:

  • Go to their website
  • click 'Get started'
  • I believe I have shell access (via SSH from my local machine or console in the browser) so it leads me to the Certbot website
  • I couldn't see PythonAnywhere or Anaconda on the list of providers (ie going via site UI) so did the 'Get Certbot Instructions' path This is probably where my knowledge runs dry
  • I chose 'web hosting product' and 'Ubuntu 20'
  • Says to install snapd, however it also says my version of Ubuntu would already have it installed. I don't have permission to install it when SSH'd to my server either. Same story with installing certbot and it doesn't look pre installed either.
Beloved premium user stockbottrades | 4 posts | Nov. 10, 2022, 10:21 p.m. | permalink

You do not need to do anything like that. It's all done from the UI on the Web page. Your web app has correct cert and it will auto re-new.

Staff fjl | 4352 posts | PythonAnywhere staff | Nov. 11, 2022, 11:44 a.m. | permalink

Ah well I certainly overcompliated that! Maybe it took some time for the certificate to flow through or an old cache, but it looks good now. Thanks!

Beloved premium user stockbottrades | 4 posts | Nov. 11, 2022, 11:34 p.m. | permalink