Securing NextcloudPI install with Let's Encrypt

jrp13149 · August 4, 2025, 7:06am

Good morning,

I have a fresh install of NextcloudPI on an RPI5. No problems with logging in, configuring local access, etc - everything seems to be working fine.

I want to enable (and force) ssl for access, and so far am finding the guidance available online to be inconsistent.

I have a registered domain with dynamic updating. I have port forwarding set up. I’m aware of, but have never used, certbot. but - what do I actually need to do?

A quick look in the /etc/apache2/sites-available directory shows 5 files:

000-default.conf
001-nextcloud.conf
default-ssl.conf
ncp.conf
ncp-activation.conf

Presumably a certification will need to be genererated and downloaded, and one or more of these will need editing, but what is in this folder doesn’t align with much of the online documentation.

Any pointers on how to get started would be much appreciated.

Thanks!

Jeff.

geoW · August 4, 2025, 7:26am

Hello Jeff,
you may read
How to access from outside your network
ncp may assist you using ncp-config on cli or webui:4443 with your browswer. Myself I’m not used to letsencrypt, my cloud is local only.
Good luck

jrp13149 · August 22, 2025, 6:46am

Thanks for this - I’m not sure why I couldn’t find this page before…

for future context, I already use freedns.afraid.org to manage dynamic dns, and port forwarding was already in place.

I created a new ‘nextcloud.MYDOMAIN.org’ subdomain in freedns, and used that in the let’s encrypt setup - it has been working perfectly for a few weeks now.

system · August 30, 2025, 6:47am

This topic was automatically closed 8 days after the last reply. New replies are no longer allowed.