Install Let's encrypt/Certbot on Debian9 with Nginx

install letsencrypt ubuntu 18.04 nginx
let's encrypt
certbot
renew let's encrypt certificate
letsencrypt renew ubuntu
certbot-auto
install letsencrypt ubuntu 16.04 nginx
certbot windows

I tried to follow this document, but I have this result:

root@debian:~# apt-get install python-certbot-nginx -t stretch-backports Reading package lists... Done Building dependency tree Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation:

The following packages have unmet dependencies: python-certbot-nginx : Depends: python3-certbot-nginx but it is not going to be installed E: Unable to correct problems, you have held broken packages.

And when I try to install python3-certbox-nginx:

Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation:

The following packages have unmet dependencies: python3-certbot-nginx : Depends: certbot (>= 0.25.0~) but it is not going to be installed Depends: python3-acme but it is not going to be installed Depends: python3-certbot but it is not going to be installed Depends: python3-mock but it is not installable Depends: python3-openssl (>= 0.13) but it is not installable Depends: python3-pyparsing (>= 1.5.5) but it is not installable Depends: python3-zope.interface but it is not installable E: Unable to correct problems, you have held broken packages.

I added the backports dep in my sources.list and ran apt-get update.

Here is my sources.list.

python -V says Python 2.7.13, but Python 3 is also installed.

Do you have the cd-rom?

deb cdrom:[Debian GNU/Linux 9.4.0 _Stretch_ - Official amd64 DVD Binary-1 20180310-11:21]/ stretch contrib main

you could try comment this line and apply a

sudo apt-get update

and try install again python3-certbox-nginx

If you're attempting to install a Let's upon the installation of the certificate,  First, we must install Let's Encrypt. Before we issue the installation command, let's update apt with this command: sudo apt-get update. After that completes, we'll issue the following command to

Installing and setting up letsencrypt for nginx with debian 9

sudo apt install python-certbot-nginx

after installing we then run it

sudo certbot --authenticator webroot --installer nginx

Accept the agreement, then select the domain to secure, next input a valid email address tied to the domain, then for the part that asks for the webroot insert..

/var/www/example.com/public

Select option 2 for secure.

After that a free Letsencrypt certificate will have been installed onto the server and is good for three months

Next test it out by going to your browser and typing in https://example.com

After that then add http2 to the /etc/sites-available/example.com at the certbot controlled point like so

listen 443 ssl http2; # managed by Certbot

Then

sudo nginx -t
sudo systemctl restart nginx

Now the server will be serving http2 protocol

This can be verified by using chrome’s net-internals page by pasting the following into a new //tab with your domain loaded in another one.

chrome://net-internals/#http2

Step 1 — Install the Let's Encrypt Client. Let's Encrypt certificates are fetched via client software running on your server. The official client is called Certbot, and its​  Install Let’s Encrypt SSL and configure HTTPS redirects Once you have installed Certbot you can use the certbot command to install your certificate. We will also pass some optional arguments to install SSL using a single command without any prompts. sudo certbot --apache --agree-tos --no-eff-email --redirect -m EMAIL -d DOMAIN_NAME -d www.

The instructions you refer to includes another step to add backports https://backports.debian.org/Instructions/

And that page says to add backports to your sources.list. To add deb http://deb.debian.org/debian stretch-backports main to sources.list.

Here is one way to do that and then install certbot...

echo "deb http://deb.debian.org/debian stretch-backports main" | tee -a /etc/apt/sources.list
apt-get update
apt-get install certbot python-certbot-apache -t stretch-backports

Step 1 — Installing Certbot. The first step to using Let's Encrypt to obtain an SSL certificate is to install the Certbot software on your server. Certbot is in very active​  For most situations, the recommended method for installing Let’s Encrypt certificates is the official Certbot tool. Certbot automates the process of obtaining and installing a certificate, and can also automatically update your web server configuration.

This guide walks you through the process of generating a Let's Encrypt SSL certificate for your domain and installing and configuring it to work  Let’s Encrypt and WP Managed WordPress with GoDaddy. Unfortunately, GoDaddy doesn’t support 3rd party SSL with managed WordPress. What you can do is install CloudFlare which comes with HTTPS. Here is my tutorial about how to install CloudFlare SSL in WordPress. Otherwise, you can do what Colby did. You need to move from managed WordPress to

Automatically enable HTTPS on your website with EFF's Certbot, deploying Let's Encrypt certificates. If your hosting provider offers Let’s Encrypt support, they can request a free certificate on your behalf, install it, and keep it up-to-date automatically. For some hosting providers, this is a configuration setting you need to turn on. Other providers automatically request and install certificates for all their customers.

Let's Encrypt is an SSL certificate authority managed by the Internet Security Research Group. It utilizes the Automated Certificate Management  SiteGround has been supporting the Let’s Encrypt global initiative for creating free SSL certificates for everybody from its beginning. We automatically issue and install a free certificate for the majority of the domains that are pointed to our shared servers and we allow one click installations for domains on cloud and dedicated accounts.