[TUTO] – Synology : Generate and install a Let’s Encrypt SSL certificate for free

1 Star2 Stars3 Stars4 Stars5 Stars (2 votes, average: 5.00 out of 5)
Loading...

By | 26 January 2018

Another feature, very convenient, supported by Synology: the ability to generate and install a let’s Encrypt SSL certificate directly from/on a synology!

In a previous article-Synology : Reverse proxy on NAS Synology saw how to use its synology NAS as reverse proxy. It is rather not bad because it allows to centralize access to the different Web services that one hosts at or for example.

In this tutorial we will see that we can generate public certificates, free, issued by the certification authority let’s Encrypt! and assign them directly to our previously generated reverse Proxy entries.

In other words, no more error pages when you access your personal services in HTTPS :

Synology-Generate and install an SSL certificate

Generate and install a Let’s Encrypt SSL certificate

Generate certificate

To generate the appointment certificate here:

  • Control Panel > Security > certificate

Synology-Generate and install an SSL certificate

  • Click on “Add

Synology-Generate and install an SSL certificate

  • A window of this type (below) must open, then click on “Add New certificate

Synology-Generate and install an SSL certificate

  • Click on “Get a certificate from Let’s Encrypt

Synology-Generate and install an SSL certificate

  • Fill in the requested information and confirm by clicking on “Apply

Synology-Generate and install an SSL certificate

  1. The fully qualified domain name for which you want to obtain the certificate
  2. The contact email address used only for the renewal of the certificate (the address will not be public)
  3. If you want to add name aliases to the certificate

Install the certificate

Now that we have generated our certificate, we will be able to assign it to the service to be protected. In my case I want to secure access in HTTPS to one of my services that is processed by my reverse proxy.

To do this you have to go to “Configure“, select the desired service and assign the previously generated certificate.

Synology-Generate and install an SSL certificate

It is possible to export the certificate (export certificate) so that it can be installed on your Web server. The export will then generate 3 files:

  • Cert.pem
  • Chaim.pem
  • Privatekey.pem

These files will be necessary to install the certificate on the side of your Web server. Since several environments exist (Apache/Nginx etc…) I leave it to you to consult the documentation to find out how to add a certificate to your Web server.

Validate the correct operation

Once all is OK, we can test that our certificate is well functioning:

Synology-Generate and install an SSL certificate

If you like this post, don't hesitate to share it !

Hi ! I’m Maxime. Founder and independant author of vDays.net. I have worked in service IT since 3 years ago, after a 5 years’ internship. Via this blog, I would like share and discuss with you on new technologies, especially on virtualization and VMware.

One thought on “[TUTO] – Synology : Generate and install a Let’s Encrypt SSL certificate for free

  1. Pingback: [TUTO] - Synology : Reverse proxy on NAS Synology - vDays.net

Leave a Reply

Your email address will not be published. Required fields are marked *