Let’sEncrypt (Certbot) Support

Update: it is now supported! Change the SSL_TYPE in ss-config to say “certbot” then run ss-install. If it is your very first time installing SlickStack on that server then first you need to ensure Cloudflare is active so that Certbot can verify your domain over HTTPS (via OpenSSL + Cloudflare). After verification is working, then Cerbot can complete setup, and after setup is complete you can then disable Cloudflare if you want and your Let’s Encrypt certificate will be 100% CA-signed for an A+ score on SSL Labs.

—

It will be supported very soon and is already been tested for several months. We still recommend using OpenSSL instead because its much easier, more lightweight and infinitely more stable. This is because its integrated into not only the Nginx Core, but also Ubuntu Core as well. Our goal is to “trust the upstream” as much as possible to improve stability and OpenSSL is a major part of that.

Anyway if you want to enable Lets Encrypt we install it via Certbot, their new tool. So in the ss-config its called certbot and not letsencrypt.

If you want to use SlickStack without Cloudflare then you’ll definitely need Let’s Encrypt SSL setup instead of OpenSSL.

However they will both still be installed and updated regularly to ensure either one is available at a moment’s notice.