DevOps

Let’s Encrypt SSL for GitLab

Prabath ThalangamaComment(0)

To enable Let’s Encrypt SSL for GitLab, follow these steps. Ensure that GitLab is configured properly and you have root access to your GitLab instance. The steps apply to GitLab’s Omnibus installation.

1. Ensure Prerequisites

  • A publicly accessible domain name pointing to your GitLab server.
  • Port 80 (HTTP) and port 443 (HTTPS) open on your server’s firewall.
  • Root or sudo privileges on the GitLab server.

2. Edit GitLab Configuration

Open the GitLab configuration file for editing:

sudo nano /etc/gitlab/gitlab.rb

Locate and set the following configurations:

  • Enable HTTPS: 
    external_url 'https://yourdomain.com'
  • Enable Let’s Encrypt integration: 
    letsencrypt['enable'] = true
letsencrypt['contact_emails'] = ['your-email@example.com'] # Optional, but recommended
letsencrypt['auto_renew'] = true # Optional, renews automatically
  • If you are behind a reverse proxy, you may need to configure nginx['listen_port'] or proxy settings accordingly.

3. Reconfigure GitLab

Apply the changes by running:

sudo gitlab-ctl reconfigure

During this process:

  • GitLab will automatically request and configure a Let’s Encrypt certificate.
  • If successful, HTTPS will be enabled on your GitLab instance.

4. Check the SSL Certificate

Access your GitLab instance in a browser at https://yourdomain.com and verify that the SSL certificate is properly issued by Let’s Encrypt.

5. Optional: Test Auto-Renewal

To test auto-renewal:

sudo gitlab-rake gitlab:lets_encrypt:renew

Monitor the logs to confirm renewal:

sudo gitlab-ctl tail nginx/gitlab_error.log


Loading

Prabath Thalangama
Web: sysadmin.lk
Email: inbox [at] sysadmin.lk
LinkedIn: https://www.linkedin.com/in/prabatht
Facebook: https://www.facebook.com/prabath.hinoize

Related Articles
DevOps

How to reset the admin password on GitLab

Prabath Thalangama

Gitlab admin password can be changed easily by using GitLab-rails command. We may have chance of forgetting GitLab admin password, so if we do we actually don’t need to reinstall GitLab just follow the simple steps to reset your GitLab admin password. This tutorial covers the ground on resetting the admin password on Gitlab. execute […]

Loading
DevOps

Install Terraform on CentOS Using Package Repository

Prabath Thalangama

The HashiCorp repository contains other non-Terraform packages that will be available for installing after you add the repository. Follow the steps to install Terraform from the official HashiCorp repository on a CentOS system. 1. Install the yum-utils tools: sudo yum install -y yum-utils 2. Add the HashiCorp repository: sudo yum-config-manager –add-repo https://rpm.releases.hashicorp.com/RHEL/hashicorp.repo 3. Finally, install Terraform using […]

Loading

Docker tutorials sinhala
DevOps Red hat linux

Deploy a Docker registry server with Authentication

Prabath Thalangama

Before you can deploy a registry, you need to install Docker on the host. A registry is an instance of the registry image, and runs within Docker. Install docker service with bellow commands. dnf config-manager –add-repo=https://download.docker.com/linux/centos/docker-ce.repo dnf install -y docker-ce –nobest systemctl enable –now docker dockerstatus=`systemctl status docker | grep “active (running)”` echo “Docker Service […]

Loading

Leave a Reply

Your email address will not be published. Required fields are marked *