How do I force SSL on my Nginx server?

September 18, 2018 1.4k views
Nginx

My server is all set up for the most part, except one thing. The only thing I still have to do is add SSL to it so that I can make it more secure.

I used the Vesta control panel to generate my CSR key, which I then linked to my SSL that I got from namecheap. I did the email confirmation and all that, and it says my website has SSL support according to the vesta cp. However, when I go to www.mywebsite.com, it says my website connection is not secure. For reference, after I installed and activated the SSL, I was told to follow this guide: www.vestacp.com/docs/#how-to-force-https.

I followed step 1, which was to install a custom nginx template. I then inputted these commands:

cd /usr/local/vesta/data/templates/web
wget http://c.vestacp.com/0.9.8/rhel/force-https/nginx.tar.gz
tar -xzvf nginx.tar.gz
rm -f nginx.tar.gz

The steps after I inputted those commands are listed as so:

  1. Create new package or set force-https as nginx template in the existing package
  2. Add new user and assing him package with force-https template
  3. Add new domain with SSL certificate and check the result

I have no idea how to do this. I know how to edit my conf. files by using sudo nano and all that, so I am not a total noob when it comes to CLI.

Any help would be appreciated, this is the last building block that I have to overcome before I can put my website into work. After I did the rm -f nginx.tar.gz command, I have no idea what to do next. Any help would be appreciated.

For reference for what to install the SSL keys, I followed this: https://www.namecheap.com/support/knowledgebase/article.aspx/9681//installing-a-ssl-certificate-in-vesta-cp.

1 Answer

Hello,

Here’s a step by step instructions guide on how to install an SSL on Nginx:

https://www.digitalocean.com/community/tutorials/how-to-install-an-ssl-certificate-from-a-commercial-certificate-authority

Then once you have your SSL installed, you could adjust your port 80 server block and add the HTTPS redirect there:

server {
    listen      80;
    server_name yourdomain.com www.yourdomain.com;
    return 301 https://$server_name$request_uri;
}

This would basically force your http traffic to https.

Hope that this helps!
Regards,
Bobby

by Mitchell Anicas
This tutorial will show you how to acquire and install an SSL certificate from a trusted, commercial Certificate Authority (CA). SSL certificates allow web servers to encrypt their traffic, and also offer a mechanism to validate server identities to their visitors. The...
Have another answer? Share your knowledge.