How do I install a Let's Encrypt SSL certificate in a Bitnami stack that's hosted on Lightsail?

2 minute read
0

I want to install an SSL certificate for my website in an Amazon Lightsail instance that has a Bitnami stack. But, I don't know how.

Short description

To install a standard Let's Encrypt SSL certificate for websites that are hosted in a Lightsail instance with a Bitnami stack, use Bitnami's bncert-tool. Examples of instance blueprints include WordPress, LAMP, Magento, and MEAN.

If you have a different instance blueprint or want to install a wildcard certificate, then see one of the following AWS Knowledge Center articles:

Resolution

Prerequisites:

  • Make sure that the domain in the DNS records points to the IP address of your Lightsail instance.
  • For wildcard domains, you can't use the bncert-tool for certificate creation.
  • The bncert-tool is supported only on 64-bit Linux operating systems (OSs). You can't use it with IPv6 addresses or to configure HTTPS certificates for NGINX web servers.

Bitnami stacks released after May 10, 2019 include the bncert-tool by default.

The bncert-tool automatically performs the following procedures:

  • Configures HTTPS certificates on Bitnami stacks
  • Creates automatic certificate renewals
  • Sets up HTTP to HTTPS redirections

To launch the Bitnami HTTPS configuration tool, run the following command:

sudo /opt/bitnami/bncert-tool

For more information, see Learn about the Bitnami HTTPS configuration tool on the Bitnami website.

AWS OFFICIAL
AWS OFFICIALUpdated 3 months ago
2 Comments

This WON'T WORK. LightSail instances default to an ipv6 address resolution and the bncert-tool DOES NOT know HOW to support ipv6.

Larry H
replied 8 months ago

Thank you for your comment. We'll review and update the Knowledge Center article as needed.

profile pictureAWS
MODERATOR
replied 8 months ago