https://www.digitalocean.com/community/tutorials/how-to-secure-apache-with-let-s-encrypt-on-centos-7
# openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/certs/ca.key -out /etc/ssl/certs/ca.crt
# sudo yum install python-certbot-apache
# sudo firewall-cmd --add-service=http
# sudo firewall-cmd --add-service=https
# sudo firewall-cmd --runtime-to-permanent
# certbot --apache
<VirtualHost *:80>
ServerName pluto.sci.ku.ac.th
Redirect "/" "https://pluto.sci.ku.ac.th"
</VirtualHost>
# apachectl configtest
# systemctl restart httpd
# sudo yum install cronie
# sudo systemctl status crond.service
# sudo crontab -e
30 2 * * 1 /usr/bin/certbot renew >> /var/log/le-renew.log