当前位置：首页 > news >正文

在宝塔面板中，为自己的云服务器安装SSL证书，为所搭建的网站启用https（主要部分攻略）

news 2025/8/24 0:17:14

前提条件

My HTTP website is running Nginx on Debian 10（或者11）

时间：2024-3-28 16:25:52

你的网站部署在Debain 10（或者11）的 Nginx上

安装单域名证书（默认）（非泛域名）

1 进入自己的云服务器的宝塔面板（即云服务器控制台的外网连接）

2 进入终端标签页

安装snap

进入这个网址

https://snapcraft.io/docs/installing-snapd

选择自己的服务器环境

以 Debian 为例

在终端运行这些指令

snap can be installed directly from the command line:

sudo apt update
sudo apt install snapd

Either log out and back in again, or restart your system, to ensure snap’s paths are updated correctly.

After this, install the `core` snap in order to get the latest `snapd`.

sudo snap install core

To test your system, install the hello-world snap and make sure it runs correctly:

sudo snap install hello-world
hello-world

如果曾经安装过Certbot packages

则需要先卸载移除这些内容

例如

sudo apt-get remove certbot
sudo dnf remove certbot
sudo yum remove certbot

Install Certbot

sudo snap install --classic certbot

Prepare the Certbot command

Execute the following instruction on the command line on the machine to ensure that the `certbot` command can be run.

sudo ln -s /snap/bin/certbot /usr/bin/certbot

Run this command to get a certificate and have Certbot edit your nginx configuration automatically to serve it, turning on HTTPS access in a single step.（小白推荐）

sudo certbot --nginx

注意，如果你的nginx不在默认目录/etc/nginx/nginx.conf

则需要修改这个命令，修改后如下

以/www/server/nginx/conf/nginx.conf为例

sudo certbot --nginx-server-root /www/server/nginx/conf

启用自动续订SSL证书

Test automatic renewal

The Certbot packages on your system come with a cron job or systemd timer that will renew your certificates automatically before they expire. You will not need to run Certbot again, unless you change your configuration. You can test automatic renewal for your certificates by running this command: