Option 1: Automated via NexusHost (Easiest)

If your domain is managed by NexusHost:

1.Go to Dashboard → SSL Certificates

2.Order a Let's Encrypt certificate for your domain

3.If your domain points to a NexusHost instance, the certificate is auto-installed

4.Auto-renewal is handled automatically

Option 2: Certbot (Free Let's Encrypt)

SSH into your server and install Certbot:

For Nginx:

sudo apt install certbot python3-certbot-nginx -y

sudo certbot --nginx -d yourdomain.com -d www.yourdomain.com

For Apache:

sudo apt install certbot python3-certbot-apache -y

sudo certbot --apache -d yourdomain.com -d www.yourdomain.com

Certbot automatically configures your web server and sets up auto-renewal via a cron job.

Verify auto-renewal:

sudo certbot renew --dry-run

Option 3: Bitnami HTTPS Tool (WordPress/LAMP)

If using a Bitnami blueprint:

sudo /opt/bitnami/bncert-tool

Follow the prompts to:

•Enter your domain name(s)

•Enable HTTP-to-HTTPS redirection

•Agree to Let's Encrypt terms

Option 4: Manual SSL Installation

For premium certificates (DigiCert, Comodo, etc.):

1.Generate a CSR on your server:

openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr

2.Submit the CSR to your certificate provider

3.Install the issued certificate files on Apache/Nginx (see SSL Installation Guide)

Verifying SSL

After installation, check your SSL at:

•https://www.sslshopper.com/ssl-checker.html

•https://www.ssllabs.com/ssltest/

•Or simply visit https://yourdomain.com and check the padlock icon

Forcing HTTPS

Most Certbot and Bitnami installations do this automatically. If not:

Nginx:

server {

listen 80;

server_name yourdomain.com;

return 301 https://$server_name$request_uri;

}

Apache (.htaccess):

RewriteEngine On

RewriteCond %{HTTPS} off

RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Installing SSL on Hosting