# SSL/HTTPS

Jenkins deployment package has installed the SSL module of Nginx and open Certificate Authority Let's Encrypt (opens new window) for you configure the HTTPS quickly and conveniently.

In addition to the vhost configuration file, HTTPS settings do not need to modify any files in Nginx

# Simple Steps

If you want to use a free certificate, just run the one command certbot on your instance to start the HTTPS deployment.

sudo certbot

If you have applied for a commercial certificate, complete the HTTPS configuration in just three steps:

  1. Upload your certificate to the directory of your instance: /data/cert
  2. Edit the vhost configuration file: /etc/nginx/conf.d/default.conf
  3. Insert the HTTPS template into server{ } and modify to your certificate path
    #-----HTTPS template start------------
    listen 443 ssl; 
    ssl_certificate /data/cert/xxx.crt;
    ssl_certificate_key /data/cert/xxx.key;
    ssl_session_timeout 5m;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
    ssl_prefer_server_ciphers on;
    #-----HTTPS template end------------
    
  4. Save file and Restart Nginx service

# Special Guide

For details on configuring HTTPS pre-conditions, HTTPS configuration segment templates, precautions, detailed steps, and troubleshooting, refer to the HTTPS Special Guide (opens new window) provided by Websoft9