# SSL (HTTPS)

{% hint style="info" %}
Your domain, as specified in the environment file, as well as the **[www](http://www).** version, must be pointed to your server's IP address. i.e both **example.com** and **[www.example.com](http://www.example.com)** must be pointed to your server's IP address.
{% endhint %}

* While logged in as the **created user account** (SSH Terminal)**,** navigate to the project's folder: 

```shell
cd ~/cryptitan
```

* Run the command to generate a Signed SSL certificate (powered by [Let's Encrypt](https://letsencrypt.org/)).

```shell
./cryptitan ssl
```

* After successfully generating ssl, start up the server:

```shell
./cryptitan up -d
```

The SSL Certification generated will expire within the period of **90 days**

* To renew the certificate, run:

```shell
./cryptitan ssl
```

{% hint style="success" %}
After generating the SSL certificates, Cryptitan will **auto redirect** http request to https.
{% endhint %}