{"id":1070,"date":"2020-01-04T23:08:59","date_gmt":"2020-01-04T16:08:59","guid":{"rendered":"https:\/\/www.linuxid.net\/post\/?p=1070"},"modified":"2025-04-18T15:21:19","modified_gmt":"2025-04-18T08:21:19","slug":"cara-setup-nginx-dengan-lets-encrypt-di-centos-8","status":"publish","type":"post","link":"https:\/\/www.linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/","title":{"rendered":"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8"},"content":{"rendered":"<p>Let\u2019s Encrypt adalah\u00a0certificate authority terbuka dan gratis\u00a0 yang dikembangkan oleh\u00a0<em>Internet Security Research Group\u00a0<\/em>(ISRG). Sertifikat yang dikeluarkan oleh Let\u2019s Encrypt dipercaya oleh hampir semua browser hari ini.<\/p>\n<p>Dalam tutorial ini, kami akan memberikan petunjuk langkah demi langkah tentang cara mengamankan Nginx Anda dengan Let\u2019s Encrypt menggunakan certbot\u00a0tool di CentOS 8.<\/p>\n<p>Kami juga akan menunjukkan cara mengkonfigurasi Nginx untuk menggunakan sertifikat SSL dan mengaktifkan HTTP\/2.<\/p>\n<h2>Prasyarat<\/h2>\n<p>Pastikan Anda telah memenuhi prasyarat berikut sebelum melanjutkan tutorial ini:<\/p>\n<ul>\n<li>Memiliki nama domain yang menunjuk ke IP server publik. Dalam tutorial ini kita akan menggunakan domain\u00a0<code>example.com<\/code>.<\/li>\n<li>Masuk sebagai user biasa\u00a0<a href=\"https:\/\/www.linuxid.net\/post\/cara-membuat-user-sudo-di-centos\/\">dengan hak akses sudo.<\/a><\/li>\n<li>Memiliki Nginx yang terkonfigurasi dengan\u00a0<a href=\"https:\/\/www.linuxid.net\/post\/tutorial-install-dan-konfigurasi-nginx-di-centos-8\/\">mengikuti instruksi ini<\/a><\/li>\n<li>Pengaturan\u00a0<a href=\"https:\/\/www.linuxid.net\/post\/cara-konfigurasi-dan-manajemen-firewall-di-centos-8\/\">firewall<\/a>\u00a0yang mengizinkan akses ke ports 80 dan 443.<\/li>\n<\/ul>\n<h2>Install Certbot<\/h2>\n<p>Certbot adalah alat baris perintah gratis yang menyederhanakan proses untuk memperoleh dan memperbarui sertifikat SSL Let\u2019s Encrypt dan mengaktifkan secara otomatis di server Anda.<\/p>\n<p>Paket certbot tidak termasuk dalam repositori standar CentOS 8, tetapi dapat diunduh dari situs web vendor.<\/p>\n<p>Jalankan perintah <a href=\"https:\/\/www.linuxid.net\/post\/tutorial-menggunakan-command-wget-di-terminal\/\"><code>wget<\/code> <\/a>berikut sebagai user root atau <a href=\"https:\/\/www.linuxid.net\/post\/pengertian-perintah-sudo-di-linux\/\"><code>sudo<\/code> <\/a>untuk mengunduh skrip certbot ke direktori <code>\/usr\/local\/bin<\/code>:<\/p>\n<pre>sudo wget -P \/usr\/local\/bin https:\/\/dl.eff.org\/certbot-auto<\/pre>\n<p>Setelah unduhan selesai, buat <a href=\"https:\/\/www.linuxid.net\/post\/cara-mengubah-file-permissions-dengan-chmod-di-linux\/\">file agar dapat dieksekusi<\/a>:<\/p>\n<pre>sudo chmod +x \/usr\/local\/bin\/certbot-auto<\/pre>\n<h2>Membuat Sertifikat Dh (Diffie-Hellman)<\/h2>\n<p>Diffie\u2013Hellman key exchange (DH) adalah metode pertukaran kunci kriptografi yang aman di saluran komunikasi yang tidak aman. Kita akan membuat key exchange DH 2048 bit baru untuk memperkuat keamanan:<\/p>\n<pre>sudo openssl dhparam -out \/etc\/ssl\/certs\/dhparam.pem 2048<\/pre>\n<p>Anda juga dapat mengubah ukuran hingga 4096 bit, tetapi dalam hal ini, pembuatannya dapat memakan waktu lebih dari 30 menit tergantung pada kemampuan pemrosesan sistem Anda.<\/p>\n<h2>Memperoleh sertifikat SSL\u00a0Let\u2019s Encrypt<\/h2>\n<p>Untuk memperoleh sertifikat SSL untuk domain, kita akan menggunakan plugin Webroot yang berfungsi dengan membuat file sementara untuk memvalidasi domain yang diminta dalam direktori\u00a0<code>${webroot-path}\/.well-known\/acme-challenge<\/code>. Server Let\u2019s Encrypt membuat permintaan HTTP ke file sementara untuk memvalidasi bahwa domain yang diminta menyelesaikan ke server tempat certbot berjalan.<\/p>\n<p>Untuk membuatnya lebih sederhana, kita akan memetakan semua permintaan HTTP untuk\u00a0<code>.well-known\/acme-challenge<\/code>ke satu direktori,\u00a0<code>\/var\/lib\/letsencrypt<\/code>.<\/p>\n<p>Perintah berikut akan\u00a0<a href=\"https:\/\/www.linuxid.net\/post\/membuat-direktori-di-linux-terminal-menggunakan-mkdir\">membuat direktori<\/a>\u00a0dan membuatnya writable oleh Nginx server.<\/p>\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"null\">sudo mkdir -p \/var\/lib\/letsencrypt\/.well-known&#13;\nsudo chgrp www-data \/var\/lib\/letsencrypt&#13;\nsudo chmod g+s \/var\/lib\/letsencrypt<\/pre>\n<p>Untuk menghindari duplikasi kode, buat dua snippet berikut yang akan kita sertakan dalam semua file server blok Nginx.<\/p>\n<p>Buka teks editor dan buat snippet\u00a0<code>letsencrypt.conf<\/code>:<\/p>\n<pre>sudo nano \/etc\/nginx\/snippets\/letsencrypt.conf&#13;\n<\/pre>\n<pre>location ^~ \/.well-known\/acme-challenge\/ {&#13;\n  allow all;&#13;\n  root \/var\/lib\/letsencrypt\/;&#13;\n  default_type \"text\/plain\";&#13;\n  try_files $uri =404;&#13;\n}<\/pre>\n<p>Buat snippet\u00a0<code>ssl.conf<\/code>\u00a0yang mencakup chipper yang direkomendasikan oleh\u00a0<a href=\"https:\/\/mozilla.github.io\/server-side-tls\/ssl-config-generator\/\" target=\"_blank\" rel=\"noopener\">Mozilla<\/a>, memungkinkan OCSP Stapling, HTTP Strict Transport Security (HSTS) dan memberlakukan beberapa header HTTP yang berfokus pada keamanan.<\/p>\n<pre>sudo nano \/etc\/nginx\/snippets\/ssl.conf<\/pre>\n<pre>ssl_dhparam \/etc\/ssl\/certs\/dhparam.pem;&#13;\n&#13;\nssl_session_timeout 1d;&#13;\nssl_session_cache shared:SSL:50m;&#13;\nssl_session_tickets off;&#13;\n&#13;\nssl_protocols TLSv1.2 TLSv1.3;&#13;\nssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;&#13;\nssl_prefer_server_ciphers off;&#13;\n&#13;\nssl_stapling on;&#13;\nssl_stapling_verify on;&#13;\n&#13;\nresolver 8.8.8.8 8.8.4.4 valid=300s;&#13;\nresolver_timeout 30s;&#13;\n&#13;\nadd_header Strict-Transport-Security \"max-age=63072000\" always;&#13;\nadd_header X-Frame-Options SAMEORIGIN;&#13;\nadd_header X-Content-Type-Options nosniff;<\/pre>\n<p>Setelah snippets dibuat, buka\u00a0<a href=\"https:\/\/www.linuxid.net\/post\/cara-konfigurasi-nginx-server-blocks-di-centos-8\/\">server block<\/a>\u00a0domain dan sertakan snippet\u00a0<code>letsencrypt.conf<\/code>\u00a0seperti yang ditunjukkan di bawah ini:<\/p>\n<pre>sudo nano \/etc\/nginx\/sites-available\/example.com<\/pre>\n<pre>server {&#13;\n  listen 80;&#13;\n  server_name example.com www.example.com;&#13;\n&#13;\n  include snippets\/letsencrypt.conf;&#13;\n}<\/pre>\n<p>Untuk mengaktifkan file server block baru, kita perlu membuat\u00a0<a href=\"https:\/\/www.linuxid.net\/post\/cara-membuat-symbolic-links-menggunakan-perintah-ln\/\">Symlink<\/a>\u00a0dari file ke direktori\u00a0<code>sites-enabled<\/code>, yang merupakan folder pertama yang akan dibaca oleh Nginx saat startup:<\/p>\n<pre>sudo ln -s \/etc\/nginx\/sites-available\/example.com \/etc\/nginx\/sites-enabled\/&#13;\n<\/pre>\n<p><a href=\"https:\/\/www.linuxid.net\/post\/perintah-dasar-untuk-manajemen-nginx-services\/\">Restart layanan Nginx<\/a>\u00a0agar perubahan diterapkan:<\/p>\n<pre>sudo systemctl restart nginx&#13;\n<\/pre>\n<p>Anda sekarang dapat menjalankan Certbot dengan plugin webroot dan mendapatkan file sertifikat SSL dengan menerbitkan perintah berikut :<\/p>\n<pre>sudo certbot certonly --agree-tos --email <a href=\"https:\/\/www.linuxid.net\/cdn-cgi\/l\/email-protection\" class=\"__cf_email__\" data-cfemail=\"2c4d484145426c49544d415c4049024f4341\">[email\u00a0protected]<\/a> --webroot -w \/var\/lib\/letsencrypt\/ -d example.com -d www.example.com&#13;\n<\/pre>\n<p>Jangan lupa untuk menganti\u00a0<code class=\"language-console-bash\" data-lang=\"console-bash\"><a href=\"https:\/\/www.linuxid.net\/cdn-cgi\/l\/email-protection\" class=\"__cf_email__\" data-cfemail=\"f293969f9b9cb2978a939f829e97dc919d9f\">[email\u00a0protected]<\/a>\u00a0\u00a0dan\u00a0example.com dengan email dan alamat domain Anda.<\/code><\/p>\n<p>Jika proses pendaftaran sertifikat SSL berhasil diperoleh, certbot akan mencetak pesan berikut:<\/p>\n<pre>IMPORTANT NOTES:&#13;\n - Congratulations! Your certificate and chain have been saved at:&#13;\n   \/etc\/letsencrypt\/live\/example.com\/fullchain.pem&#13;\n   Your key file has been saved at:&#13;\n   \/etc\/letsencrypt\/live\/example.com\/privkey.pem&#13;\n   Your cert will expire on 2020-03-22. To obtain a new or tweaked&#13;\n   version of this certificate in the future, simply run certbot&#13;\n   again. To non-interactively renew *all* of your certificates, run&#13;\n   \"certbot renew\"&#13;\n - If you like Certbot, please consider supporting our work by:&#13;\n&#13;\n   Donating to ISRG \/ Let's Encrypt:   https:\/\/letsencrypt.org\/donate&#13;\n   Donating to EFF:         https:\/\/eff.org\/donate-le<\/pre>\n<p>Sekarang Anda memiliki file sertifikat, langkah selanjutnya adalah mengedit server block untuk domain sebagai berikut<\/p>\n<pre>sudo nano \/etc\/nginx\/sites-available\/example.com<\/pre>\n<pre>server {&#13;\n    listen 80;&#13;\n    server_name www.example.com example.com;&#13;\n&#13;\n    include snippets\/letsencrypt.conf;&#13;\n    return 301 https:\/\/$host$request_uri;&#13;\n}&#13;\n&#13;\nserver {&#13;\n    listen 443 ssl http2;&#13;\n    server_name www.example.com;&#13;\n&#13;\n    ssl_certificate \/etc\/letsencrypt\/live\/example.com\/fullchain.pem;&#13;\n    ssl_certificate_key \/etc\/letsencrypt\/live\/example.com\/privkey.pem;&#13;\n    ssl_trusted_certificate \/etc\/letsencrypt\/live\/example.com\/chain.pem;&#13;\n    include snippets\/ssl.conf;&#13;\n    include snippets\/letsencrypt.conf;&#13;\n&#13;\n   # Pengaturan untuk www ke no-www&#13;\n    return 301 https:\/\/example.com$request_uri;&#13;\n}&#13;\n&#13;\nserver {&#13;\n    listen 443 ssl http2;&#13;\n    server_name example.com;&#13;\n&#13;\n    ssl_certificate \/etc\/letsencrypt\/live\/example.com\/fullchain.pem;&#13;\n    ssl_certificate_key \/etc\/letsencrypt\/live\/example.com\/privkey.pem;&#13;\n    ssl_trusted_certificate \/etc\/letsencrypt\/live\/example.com\/chain.pem;&#13;\n    include snippets\/ssl.conf;&#13;\n    include snippets\/letsencrypt.conf;&#13;\n&#13;\n    # . . .dan kode yang lain&#13;\n}<\/pre>\n<p>Dengan konfigurasi di atas akan memaksa\u00a0<a href=\"https:\/\/www.linuxid.net\/post\/cara-mudah-redirect-http-ke-https-di-nginx\/\">nginx untuk menggunakan HTTPS<\/a>\u00a0dan redirect dari www ke non-www.<\/p>\n<p>Restart atau <a href=\"https:\/\/www.linuxid.net\/post\/perintah-dasar-untuk-manajemen-nginx-services\/\">reload Nginx service<\/a>\u00a0agar perubahan diterapkan:<\/p>\n<pre>sudo systemctl reload nginx<\/pre>\n<p>Buka situs web Anda menggunakan https:\/\/, dan Anda akan melihat ikon gembok. Atau\u00a0Jika menguji domain Anda menggunakan \u00a0<a href=\"https:\/\/www.ssllabs.com\/ssltest\/\" target=\"_blank\" rel=\"noopener\">SSL Labs Server<\/a>, Anda akan mendapatkan nilai \u00a0<code>A+<\/code>, seperti yang ditunjukkan pada gambar di bawah:<\/p>\n<p><a href=\"https:\/\/www.linuxid.net\/assets\/media\/centos\/32212\/CentOS-https.jpg\"><img fetchpriority=\"high\" decoding=\"async\" class=\"alignnone size-full wp-image-32524\" src=\"https:\/\/www.linuxid.net\/assets\/media\/centos\/32212\/CentOS-https.jpg\" alt=\"CentOS https\" width=\"600\" height=\"279\"\/><\/a><\/p>\n<h2>Perpanjang Otomatis Sertifikat SSL\u00a0Let\u2019s Encrypt<\/h2>\n<p>Sertifikat Let\u2019s Encrypt\u2019s berlaku selama 90 hari. Untuk secara otomatis memperbarui sertifikat sebelum habis masa berlakunya, paket certbot membuat <a href=\"https:\/\/www.linuxid.net\/post\/tutorial-cron-job-dan-crontab-untuk-otomatisasi-tindakan\/\">cronjob<\/a> yang berjalan dua kali sehari dan secara otomatis akan memperbarui sertifikat apa pun dalam kurun waktu 30 hari sebelum masa berlaku sertifikat berakhir.<\/p>\n<p>Karena kita menggunakan plug-in webroot certbot setelah sertifikat diperbarui, kita juga harus memuat ulang layanan nginx. Tambahkan\u00a0<code>--renew-hook \"systemctl reload nginx\"<\/code>\u00a0ke file\u00a0<code>\/etc\/cron.d\/certbot<\/code>\u00a0sehingga terlihat seperti ini:<\/p>\n<pre>sudo nano \/etc\/cron.d\/certbot<\/pre>\n<pre>0 *\/12 * * * root test -x \/usr\/bin\/certbot -a \\! -d \/run\/systemd\/system &amp;&amp; perl -e 'sleep int(rand(3600))' &amp;&amp; certbot -q renew --renew-hook \"systemctl reload nginx<\/pre>\n<p>Untuk menguji proses pembaruan sertifikat , Anda dapat menggunakan perintah berikut :<\/p>\n<pre>sudo certbot renew --dry-run<\/pre>\n<p>Jika tidak ada kesalahan, berarti proses pembaruan berhasil.<\/p>\n<h2>Kesimpulan<\/h2>\n<p>Dalam tutorial ini, kami telah menunjukkan kepada Anda cara menggunakan klien Let\u2019s Encrypt, certbot untuk mengunduh sertifikat SSL untuk domain Anda.<\/p>\n<p>Kami juga membuat snippets Nginx untuk menghindari duplikasi kode dan mengonfigurasi Nginx untuk menggunakan sertifikat. Di akhir tutorial, kami telah menyiapkan cronjob untuk perpanjangan sertifikat otomatis.<\/p>\n<p>Untuk mempelajari lebih lanjut tentang Certbot, kunjungi <a href=\"https:\/\/certbot.eff.org\/docs\/\">halaman dokumentasinya<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Let\u2019s Encrypt adalah\u00a0certificate authority terbuka dan gratis\u00a0 yang dikembangkan oleh\u00a0Internet Security Research Group\u00a0(ISRG). Sertifikat yang&hellip;<\/p>\n","protected":false},"author":2,"featured_media":1071,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[15,111,92,28,24],"class_list":["post-1070","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-centos","tag-centos","tag-centos-8","tag-lets-encrypt","tag-nginx","tag-virtualization"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.7 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8 - Linuxid<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/\" \/>\n<meta property=\"og:locale\" content=\"id_ID\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8 - Linuxid\" \/>\n<meta property=\"og:description\" content=\"Let\u2019s Encrypt adalah\u00a0certificate authority terbuka dan gratis\u00a0 yang dikembangkan oleh\u00a0Internet Security Research Group\u00a0(ISRG). Sertifikat yang&hellip;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/\" \/>\n<meta property=\"og:site_name\" content=\"Linuxid\" \/>\n<meta property=\"article:published_time\" content=\"2020-01-04T16:08:59+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-04-18T08:21:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"530\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"xsand\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Ditulis oleh\" \/>\n\t<meta name=\"twitter:data1\" content=\"xsand\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimasi waktu membaca\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 menit\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/\",\"url\":\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/\",\"name\":\"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8 - Linuxid\",\"isPartOf\":{\"@id\":\"https:\/\/linuxid.net\/post\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg\",\"datePublished\":\"2020-01-04T16:08:59+00:00\",\"dateModified\":\"2025-04-18T08:21:19+00:00\",\"author\":{\"@id\":\"https:\/\/linuxid.net\/post\/#\/schema\/person\/e6642d26041eab9fef2677e204e89d79\"},\"breadcrumb\":{\"@id\":\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#breadcrumb\"},\"inLanguage\":\"id\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"id\",\"@id\":\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#primaryimage\",\"url\":\"https:\/\/www.linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg\",\"contentUrl\":\"https:\/\/www.linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg\",\"width\":1000,\"height\":530},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Beranda\",\"item\":\"https:\/\/linuxid.net\/post\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/linuxid.net\/post\/#website\",\"url\":\"https:\/\/linuxid.net\/post\/\",\"name\":\"Linuxid\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/linuxid.net\/post\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"id\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/linuxid.net\/post\/#\/schema\/person\/e6642d26041eab9fef2677e204e89d79\",\"name\":\"xsand\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"id\",\"@id\":\"https:\/\/linuxid.net\/post\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/cc8513768e15fa0758099a0ba5b898f3?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/cc8513768e15fa0758099a0ba5b898f3?s=96&d=mm&r=g\",\"caption\":\"xsand\"},\"url\":\"https:\/\/www.linuxid.net\/post\/author\/xsand\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8 - Linuxid","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/","og_locale":"id_ID","og_type":"article","og_title":"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8 - Linuxid","og_description":"Let\u2019s Encrypt adalah\u00a0certificate authority terbuka dan gratis\u00a0 yang dikembangkan oleh\u00a0Internet Security Research Group\u00a0(ISRG). Sertifikat yang&hellip;","og_url":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/","og_site_name":"Linuxid","article_published_time":"2020-01-04T16:08:59+00:00","article_modified_time":"2025-04-18T08:21:19+00:00","og_image":[{"width":1000,"height":530,"url":"https:\/\/linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg","type":"image\/jpeg"}],"author":"xsand","twitter_card":"summary_large_image","twitter_misc":{"Ditulis oleh":"xsand","Estimasi waktu membaca":"6 menit"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/","url":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/","name":"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8 - Linuxid","isPartOf":{"@id":"https:\/\/linuxid.net\/post\/#website"},"primaryImageOfPage":{"@id":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#primaryimage"},"image":{"@id":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#primaryimage"},"thumbnailUrl":"https:\/\/www.linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg","datePublished":"2020-01-04T16:08:59+00:00","dateModified":"2025-04-18T08:21:19+00:00","author":{"@id":"https:\/\/linuxid.net\/post\/#\/schema\/person\/e6642d26041eab9fef2677e204e89d79"},"breadcrumb":{"@id":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#breadcrumb"},"inLanguage":"id","potentialAction":[{"@type":"ReadAction","target":["https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/"]}]},{"@type":"ImageObject","inLanguage":"id","@id":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#primaryimage","url":"https:\/\/www.linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg","contentUrl":"https:\/\/www.linuxid.net\/post\/wp-content\/uploads\/2025\/03\/Cara-Setup-Nginx-dengan-Lets-Encrypt-di-CentOS-8.jpg","width":1000,"height":530},{"@type":"BreadcrumbList","@id":"https:\/\/linuxid.net\/post\/cara-setup-nginx-dengan-lets-encrypt-di-centos-8\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Beranda","item":"https:\/\/linuxid.net\/post\/"},{"@type":"ListItem","position":2,"name":"Cara Setup Nginx dengan Let\u2019s Encrypt di CentOS 8"}]},{"@type":"WebSite","@id":"https:\/\/linuxid.net\/post\/#website","url":"https:\/\/linuxid.net\/post\/","name":"Linuxid","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/linuxid.net\/post\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"id"},{"@type":"Person","@id":"https:\/\/linuxid.net\/post\/#\/schema\/person\/e6642d26041eab9fef2677e204e89d79","name":"xsand","image":{"@type":"ImageObject","inLanguage":"id","@id":"https:\/\/linuxid.net\/post\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/cc8513768e15fa0758099a0ba5b898f3?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/cc8513768e15fa0758099a0ba5b898f3?s=96&d=mm&r=g","caption":"xsand"},"url":"https:\/\/www.linuxid.net\/post\/author\/xsand\/"}]}},"_links":{"self":[{"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/posts\/1070","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/comments?post=1070"}],"version-history":[{"count":1,"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/posts\/1070\/revisions"}],"predecessor-version":[{"id":2721,"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/posts\/1070\/revisions\/2721"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/media\/1071"}],"wp:attachment":[{"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/media?parent=1070"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/categories?post=1070"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.linuxid.net\/post\/wp-json\/wp\/v2\/tags?post=1070"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}