Anyone using lets encrypt for free SSL?

SonicGT

New Member
If so how easy was it to implement and do you have a link to any instructions, for cpanel or other? My VPS is CentOS 7 currently.
 

KH-RileyA

Technical Support Operator
Staff member
I use it on my VPS. If you just need a cert for the green padlock, it's great. If you're doing any kind of ecommerce, buy a cert.
 

estelle

New Member
Getting Let's Encrypt up and running

SSH as root

$ ssh -p 2200 root@123.1.23.123

then run the command:

$ /scripts/install_lets_encrypt_autossl_provider

then log into your main control panel:

https://123.1.23.123:2086

under SSL/TLS you'll find "Manage AutoSSL"
Under "providers", you'll see "Let's Encrypt". That's a new option that was created by running the command as root.

Select "Let's Encrypt". Then agree to their terms of service and create a new registration with Let's Encrypt if necessary. Under the managed users tab you can enable / disable AutoSSL by account.

Now, under the control panel of each individual account, under SECURITY > SSL/TLS, find Install and Manage SSL for your site (HTTPS)" select "Manage SSL Sites".

If you end up with a self signed certificate (which you don't want) instead of a Let's Encrypt cert, delete the cert in the individual account. Click the "run AutoSSL for all users" button as root under "Manage Auto SSL". When you refresh the individual user, the correct cert should be there.
 

Dan

Moderator
Hi Estelle,

Have you taken a look in WHM | SSL/TLS | Manage AutoSSL? You might find it much easier to use than having to login to every account via SSH and cPanel...
 

DarkSorrow

New Member
I don't use the LetsEncrypt. It has to many limitations. Plus the FREE cPanel SSL is auto setup and ready to go as soon as you add an account. just add https to the URL.
 

KH-RamonR

New Member
I don't use the LetsEncrypt. It has to many limitations. Plus the FREE cPanel SSL is auto setup and ready to go as soon as you add an account. just add https to the URL.
Too many limitations such as?

They recently announced they're doing wildcards. Once that's been released, there isn't really much stopping you from generating a single wildcard SSL cert. Unless you try to generate a SSL cert for subdomain2.subdomain1.example.com; in which case that'd fail and you'd need to create a new wildcard covering subdomain2.subdomain1.example.com.

Edit: Whoa, necropost! Sorry about that.
 
Top