How to Quickly Set Up a Secure Jupyter Notebook with Anaconda, Nginx, and Let’s Encrypt

Basic Structure

The core stack consists of the familiar Python data libraries pandas, numpy, matplotlib, bundled together with Jupyter Notebook (formerly IPython Notebook) and optionally front‑ended by Nginx or Apache reverse proxy, secured with Let’s Encrypt HTTPS.

Installation Environment

While manual package installation works on FreeBSD or Debian, it can be cumbersome for beginners, especially on Windows where non‑Python dependencies require a compiler. The recommended shortcut is to install Anaconda, which packages Python, common libraries, and a package manager for all major platforms.

Download the installer from the official website, run it, and choose the Python 3 version (Python 2 is deprecated).

Initial Use

After installing Anaconda, you have a ready‑to‑use Python environment via the command line or an editor of your choice. For quick work, launch Jupyter Notebook (included in the latest Anaconda) instead of a full IDE.

Run the notebook locally with the following command:

The command starts a notebook server and opens a browser window.

For better security and accessibility, run the notebook on a remote server and access it via a browser.

Configure Jupyter Notebook

Generate a configuration file with jupyter notebook --generate-config, which creates ~/.jupyter/jupyter_notebook_config.py. Edit the file to adjust settings; for example, set c.NotebookApp.open_browser = False to prevent automatic browser launch.

To avoid entering a token each time, set a password using jupyter notebook password, which stores a hashed password in the config file.

Reverse Proxy Configuration

Because Jupyter Notebook uses WebSocket, a simple proxy to port 8888 is insufficient. Below are example configurations for Nginx and Apache to correctly proxy WebSocket traffic.

HTTPS Configuration

When port 80 is unavailable, the usual acme‑tiny method for Let’s Encrypt fails. Instead, use the TLS‑SNI (HTTPS‑only) validation method supported by the official Let’s Encrypt client.

Install the client (example for Nginx) and generate a certificate:

After execution, the certificate is created, saved, and the Nginx configuration is automatically updated. You can now access Jupyter Notebook via https://your.domain.name/ using the password set earlier.