Let's Encrypt Instructions for Shared Hosting
What is Let’s Encrypt?
Let’s Encrypt offers a free and easy way to obtain an SSL certificate for your domain. These certificates are issued via Let’s Encrypt which is a new certificate authority that has the backing of large companies such as Mozilla, Cisco, Facebook to name a few which allows us to automate the entire process of requesting, validating, issuing and installing the certificate.
You can now simply log into our management interface and request an Let’s Encrypt SSL Certificate and our system will automatically request the certificate for you and perform the installation.
Steps to Enable
You can enable Let’s Encrypt in management interface by going to Hosting > Locate the required hosting service and click the menu options and select ‘Let’s Encrypt’
You will have the option here to Install a Let’s Encrypt certificate for any primary, add-on or sub domains within your hosting service. Please keep in mind that it is not possible at this stage to install an SSL on a parked domain due to the way cPanel operates.
For the installation to work successfully your domain needs to resolve to our shared hosting server. For those using Cloudflare or alternative proxy solutions, this should still work for you providing your website will eventually end up coming back to your shared hosting service.
The Let’s Encrypt SSL will be installed onto your service using SNI instead of a dedicated IP address. If you require a dedicated IP address you will need to organise your own SSL (either via Synergy Wholesale or another company) and submit it for installation.
At this stage, please note that you will not be able to use Cloudflare’s free service including Railgun with an SSL Certificate due to a limitation in our implementation of Cloudflare presently. This is being addressed and an announcement in regards to this is expected shortly.
Renewing a Let’s Encrypt Certificate
Let’s Encrypt certificates are only valid for 90 days from the date of issue.
You should receive expiry notices in regards to your Let’s Encrypt SSL as the expiry draws near. You will only receive this expiry notice if you had an email address associated with your cPanel service at the time of creation. We cannot guarantee this however, since it’s not our systems that will be sending you the notice.
Once your Let’s Encrypt Certificate is within 10 days of Expiry our system will automatically attempt to renew your ssl certificate and update your website with it to allow continuous and uninterrupted service. Should this automated system fail the first time it will keep trying every four hours to renew your ssl certificate.
Re-issuing a Let’s Encrypt Certificate
Should you need to re-issue your Let’s Encrypt SSL certificate for any reason you can simply login to our management interface to remove it.
You go to the same page as mentioned above to install the ssl. Once you have removed the SSL from your service you will then be able to click the Install button again to have it re-issued.
How is Let’s Encrypt different from a Vendor-Issued SSL Certificate?
While Let’s Encrypt offers a free and easy way to set up an SSL Certificate there are many advantages to using a trusted vendor issued SSL Certificate.
Our Trustwave SSL Certificates offer a variety of different types of certificates that are all valid for 1 year as opposed to only 90 days. All certificates require verification by the organisation requesting the certificate and all are covered by a warranty should you be the victim of theft due to a faulty SSL certificate. We also offer some premium certificates such as EV certificates which includes a solid green address bar and wildcard certificates which can be installed on an unlimited number of sub-domains.