Issue and renew Let's Encrypt certificates with certonly and webroot authentication — full control of your Nginx configuration, no auto-generated edits, shared webroot directory, and a cron job that just works.

Use Nginx as a reverse proxy to securely access your Jellyfin media server from anywhere — with SSL, security headers, WebSocket support, and dynamic DNS for residential connections.

If you are seeing this error this month (May 2025) and have tried searching the web for a fix you will find that there will be no fix that keeps SSL Stapling enabled. LetsEncrypt no longer includes OCSP URLs. Here's how to update your configuration.

Most of my domains are registered with Namecheap, and powered by Nginx. The site you are viewing now is one such example. Currently with Namecheap, domain registrations, hosting, transfers and WhoIS protection come with a free PositiveSSL subscription. This section will show you how to generate a certificate request with OpenSSL and how to install the provided certificate into Nginx.