SSL For Free: 使用Let’s Encrypt 申請SSL憑證

SSL 憑證,就是 HTTPS

使用 Let’s Encrypt 應該是最簡單的方法,讓你申請到數位憑證認證機構(CA)推出的免費 SSL/TLS 憑證。當你的網站加入 SSL 加密協定(HTTPS,網址列會是綠色鎖頭圖示),就不會被讀者誤會是危險網站或詐騙網站了(HTTP,是紅色鎖頭圖示)。申請方式其實很簡單,但是因為是免費的,所以每3個月需要重新申請SSL憑證。我覺得不會太麻煩,反正就用手機日曆功能提醒自己就好了!

SSL 憑證申請流程

1-1、連結到【 SSL For Free 】網站

點選下方連結,進到【 SSL_For_Free 】網站後,在欄位中填入你要申請 Let’s Encrypt 憑證的網域名稱,再用空白鍵來輸入不同的網址,例如

  1. 申請網站: https://www.sslforfree.com/
  2. 輸入網域名稱 (範例) : 【 hipay0.com www.hipay0.com 】
  3. 點選按鈕: 【 Create_Free_SSL_Certificate 】
02_ SSL For Free_ Let's Encrypt
連結到【 SSL_For_Free 】網站

1-2、使用 Manual Verification

可以看到剛剛輸入想要申請憑證的網址會列在最上方,假使正確的話,就可以按【 Manual Verification 】

  • Manual Verification
    • Upload verification files manually to your domain to verify ownship
03_ SSL For Free_ Let's Encrypt
使用 Manual Verification

1-3、Manually Verify Domain

滑鼠往下滑動,然後按【 Manually Verify Domain 】

04_ SSL For Free_ Let's Encrypt
Manually Verify Domain

1-4、建立 .well-known 資料夾

先打開 command windows ,在安裝 WordPress 的路徑下新增【 .well-known 】資料夾:

  • cd\
  • cd C:\wamp64\www\spa
  • mkdir .well-known
05_ SSL For Free_ Let's Encrypt
建立 .well-known 資料夾

1-5、建立 acme-challenge 資料夾

然後開啟檔案總管,在 C:\wamp64\www\spa\.well-known\ 的路徑下再新增【 acme-challenge 】資料夾

06_ Let's Encrypt
建立 acme-challenge 資料夾

1-6、Download SSL Certificate

在下方【 1 】的兩個檔案下載到【 1 – 5 】的路徑下,然後點選下方【 2 】兩個連結,假使能夠開啟新的網頁,而且正確顯示文字的話,就代表成功了。接著按下【 Download_SSL_Certificate 】按鈕

07_ Let's Encrypt
Download SSL_Certificate

1-7、設定通知信箱

接著會出現帳號登入的畫面,就輸入你常用的 email 信箱,這樣子,憑證到期前一周,會透過這個 email,通知你要更新憑證。

09_ Let's Encrypt
設定通知信箱

1-8、下載SSL憑證到電腦

然後把SSL憑證下載到電腦

10_ Let's Encrypt
下載SSL憑證到電腦

1-9、解壓縮憑證檔案

解壓縮後複製到 C:\wamp64\bin\apache\apache2.4.37\conf ,這樣子就完成SSL憑證申請了。

08_ Let's Encrypt
解壓縮憑證檔案

1-10、驗證網站

最後,在瀏覽器網址列輸入【 https://hipay0.com/ 】,假使可以進入登入畫面,就表示成功了!

Free SSL_Certificates & Wildcard SSL_Certificates in Minutes

  • 100% Free Forever
    • Never pay for S S L again. Powered by ZeroSSL with free 90-day certificates.
  • Widely Trusted
    • Our free S S L certificates are trusted in 99.9% of all major browsers worldwide.
  • Enjoy S S L Benefits
    • Protect user information, generate trust and improve Search Engine Ranking.
  • ZeroSSL and Let’s Encrypt both offer free 90-day SSL_certificates.
    • Starting the SSL_certificate creation process above will allow you to create one or multiple free SSL_certificates, issued by ZeroSSL. Like Let’s Encrypt, they also offer their own ACME server, compatible with most ACME plug-ins.
  • Private Keys are generated in your browser and never transmitted.
  • It is free for all usages including commercial usage
  •  Just choose one of the manual verification methods and there will be an input at the bottom before the generate certificate button to provide your own CSR.
  • Certificates can only be generated for registered domain names.
  • All verification files or records can be deleted after verification.

架網站懶人包