This tutorial explains how to install a TLS certificate on an Ubuntu VM on CloudCIX. This exampe uses free certificates from LetsEncrypt.org.
LetsEncrypt certificates are free, trusted by all popular browsers and devices, and the installation process is highly automated on most operating systems.
You must open a firewall rule to allow inbound traffic on TCP port 80 before attempting to install the certificate. Normally you will open TCP port 443 to allow your web server be reached by the public Internet after installation of the certificate.
For Linux and UNIX like Servers: To install such a certificate on Linux and UNIX like Servers, we recommend you use the Certbot ACME Client. Information on how to install and use this Client is available via CertBot.
For Windows Servers: To install such a certificate on Windows Servers, we recommend you use the win-acme Client. Information on how to install and use this Client is available via Win-acme.
Use the HTTP challenge technique.
Refrain from using wildcard certificates but rather generate a new certificate for each URL.