SSL For free?

KH-Jonathan

Director of Managed Services
Staff member
Yep, via cPanel's AutoSSL mechanism you can use Comodo certificates or LetsEncrypt certs.
 

Dan

Moderator
Hi kyliewong,

Yes that would be correct, as @KH-Jonathan said you can use Comodo or LetsEncrypt in the AutoSSL applet of WHM.

Hope that helps!
 

KH-Jonathan

Director of Managed Services
Staff member
Any difference between LetsEncrypt and Comodo ssl? Purchased a few ones from Namecheap.
Functionally they're the same. LetsEncrypt has tighter restrictions on number of requests and such but in the end it doesn't much matter.
 

daverj

New Member
Is the free SSL just for the server itself? Or do you get a free SSL on every domain that you put on the VPS?

I have one of your older VPS-2 accounts. Is it the same for that?
 

KH-JonathanKW

Technical Assurance Specialist
Staff member
DirectAdmin and cPanel both provide certificates for the server and then every eligible domain placed on the server.

cPanel provides 1 year signed certificates for the hostname (server) and then 90 day certificates for every eligible domain via AutoSSL (Sectigo) or Let's Encrypt.

DirectAdmin uses Let's Encrypt for everything, hostname, domains, etc -- all 90 day certificates.

I have one of your older VPS-2 accounts. Is it the same for that?
The only way you wouldn't be eligible is if your VPS was using CentOS 6 (32-bit) with cPanel as cPanel would be stuck to version 11.56 which is before AutoSSL was fully utilized and available.

When in doubt, open a support ticket and we'll be glad to check for you.
 

daverj

New Member
cPanel provides 1 year signed certificates for the hostname (server) and then 90 day certificates for every eligible domain via AutoSSL (Sectigo) or Let's Encrypt.
cPanel did send me an email a short time ago saying they were installing a new certificate for the hostname, and that it auto-renews each year. They didn't mention the other domains.

I just tried one of the other domains using https and it worked. I checked the certificate used and it shows a cPanel certificate for that web site that started on 1/9/2020 and goes to 4/9/2020. So that's 90 days. The site has been there for several years on this server, and I don't remember ever enabling the SSL for it, so I assume cPanel did it automatically at some point. Do those 90 day ones also auto-renew every 90 days as long as I keep paying for cPanel?

The only way you wouldn't be eligible is if your VPS was using CentOS 6 (32-bit) with cPanel as cPanel would be stuck to version 11.56 which is before AutoSSL was fully utilized and available.
It has:
CENTOS 7.7 virtuozzo
WHM / cPanel v84.0.21
 

KH-JonathanKW

Technical Assurance Specialist
Staff member
The certificate will auto-renew for as long as it points to your server and the cPanel license remains active.
 

daverj

New Member
So is there any advantage to paying for the cheap DV SSLs you sell vs just using the free ones that cPanel is providing me? Or are they basically the same thing?
 

KH-ScottW

Member
Staff member
So is there any advantage to paying for the cheap DV SSLs you sell vs just using the free ones that cPanel is providing me? Or are they basically the same thing?
If you're operating an eCommerce site that takes forms of payment I would go with one of the paid for SSLs due to the fact they have warranties to back them up as well as guarantees. The free SSLs are just there for basic coverage and to give you the padlock and https in the url thanks largely to Google a few years back.
 

daverj

New Member
OK, so no eCommerce for the near future. Maybe next year.

In the mean time, I notice that going to the http version of these web pages gives me a broken lock icon. Which I suspect might hurt me at Google & Bing. Should I create a rewrite rule for each site to force requests for http to instead go to https? Any reason not to? Is it easy? It's been a few years since I tried any rewrite rules on a site. (that was before I came to KH four years ago)
 
Top