HTTPS Certificate - LeandroTheDev/arch_linux GitHub Wiki

sudo pacman -S certbot

don't forget to open the ports 80 and 443!

sudo certbot -d your.server.domain --manual --preferred-challenges dns certonly

for duckdns for example you can set by using the curl "https://www.duckdns.org/update?domains=YOURVALUE&token=YOURVALUE&txt=YOURVALUE"

Test if is working dig TXT _acme-challenge.your.server.domain +short

now copy the certificates to your user

sudo cp /etc/letsencrypt/live/your.server.domain/fullchain.pem /home/user/certs/

sudo cp /etc/letsencrypt/live/your.server.domain/privkey.pem /home/user/certs/

sudo chown user:user /home/user/certs/*

Now you have HTTPS certificate running, good luck!