EFF Let's Encrypt SSL certificate usage

#1
I did a quick search for this and did not see any posts so excuse me if this is a repeat.

My SSL certificates are expiring at the end of the month and I am considering using the free EFF CA rather than paying to renew the Comodo certs I have now.

Does KH support this? If so is there anything special I need to know? And has anyone here used them?

As I understand it, this is only recently available but I have a couple of friends in Europe who have set it up. I do not actually remember the details of what I did last time, but I think I ordered Comodo certs from NameCheap.com and then KH Tech Support installed them for me.

Thanks.
 

phpAddict

Active Member
#2
I've not yet used the feature myself but cPanel just did an update that includes that feature. As I understand it's now just a couple clicks in WHM and you're good to go. I know KH will help/support it if needed too.
 

Dan

Moderator
#3
Hi Terry,

I recently enabled this myself, it was pretty painless actually and works great for me. Here's a post I wrote on how I went about it.

There are differences between a Let's Encrypt SSL and a CA SSL though which you'll have to decide whether or not those matter to you.
 
#4
Hi Dan,
I am using Let's Encrypt as well on my servers but have an interesting problem that I haven't found a solution for yet.
Under normal circumstances the sites would load just fine but when using "Firefox Dev Edition" browser I get an "Error code: SEC_ERROR_UNKNOWN_ISSUER"
Also had reports that "Black Berry" mobiles can't access the sites.

Any ideas? Is there an intermediate certificate that needs to be installed?
 
#5
Thanks to both of you. Dan, I'll have a look at that article. My goal at the moment is just to enable SSL connections everywhere. Thanks for the help.
 

Dan

Moderator
#6
Hi Fred,

I would guess that the problem is the same in both cases, they haven't added the CA to be trusted.

I found some posts searching for the Black Berry issue as I figured that would be easier. This post actually links to the CA so I'll use that one, install it into FF as well and you will hopefully be GTG!
 
#7
Dan that was my thought as well.

However installing the CA to FF isn't really solving the problem. Not to concerned about FF Def.
As for BB I guess we will just have to wait till BB supports lets encrypt.
 
Top