ShipSquad

How to Set Up SSL Certificates

beginner8 minDevOps

Configure SSL/TLS certificates for your domains with automatic renewal and proper security settings.

What You'll Learn

This beginner-level guide walks you through how to set up ssl certificates step by step. Estimated time: 8 min.

Step 1: Choose your certificate approach

Use Let's Encrypt for free automated certificates, AWS ACM for AWS services, or Cloudflare for CDN-integrated SSL.

Step 2: Generate and install certificates

Run Certbot for Let's Encrypt or configure your cloud provider's certificate service for automatic provisioning.

Step 3: Configure your web server

Update Nginx, Apache, or your load balancer configuration to serve HTTPS with proper cipher suites and protocols.

Step 4: Set up automatic renewal

Configure cron jobs or systemd timers for Let's Encrypt renewal, or use managed services that handle renewal automatically.

Step 5: Implement security headers

Add HSTS, CSP, and other security headers to enforce HTTPS and protect against common web attacks.

Frequently Asked Questions

Do I need to pay for SSL certificates?

No. Let's Encrypt provides free, automated SSL certificates trusted by all browsers. Paid certificates are only needed for extended validation or specialized use cases.

How do I handle SSL for multiple subdomains?

Use wildcard certificates with Let's Encrypt DNS validation, or individual certificates per subdomain. Cloudflare provides automatic SSL for all proxied subdomains.

What TLS version should I support?

Support TLS 1.2 and 1.3 only. Disable TLS 1.0 and 1.1 as they have known vulnerabilities. Most modern clients support TLS 1.2 at minimum.

Further Reading

Complete Guide to AI Agents in 2026

Everything about AI agents and automation

Ready to assemble your AI squad?

10 specialized AI agents. One mission. $99/mo + your Claude subscription.

Start Your Mission