Get FREE SSL Certificates with Let’s Encrypt

Get FREE SSL Certificates with Let’s Encrypt

In this video, we’ll be using a bestspace Cloud Server to host a web server with a FREE SSL certificate from Let’s Encrypt to allow our website to use HTTPS.

 

Other Free SSL Certificate Options

While Let’s Encrypt is the most popular free option, it’s no longer the only show in town. Here are some other options:

  • Cloudflare – Cloudflare offers a shared SSL certificate on their free plan. If you’re already using Cloudflare, this is a great way to get your site up and running with HTTPS.
  • FreeSSL – While it’s not publicly available yet, FreeSSL is a free SSL certificate project from Symantec. Nonprofits or startups can get FreeSSL right now. Otherwise, you can sign up to be notified when it goes public.

Install Godaddy SSL Certificate for Free – Let’s Encrypt installation without coding – get https url

 

Hey, I just met you and this is crazy. I make helpful tutorials, so tip me maybe? https://www.paypal.me/punchsalad

I’ll show you how to Install Godaddy SSL Certificate for Free using Let’s Encrypt and Cpanel. No Coding experience needed. Https url in 7 minutes.

Let’s Encrypt is becoming really popular and even NASA is using it for some of it’s smaller sites (3000 different sites).

Installing Let’s Encrypt might get complicated to people that are not used to use terminal and shell. So this tutorial is for people who want to get free ssl certificate using shared web hosting using zerossl.com installation tool.

Summary of steps:
1. Go to https://zerossl.com/
2. Follow the steps in the video & website
3. Add below code to your .htaccess file for URL redirections
4. Updated the SSL certificate every 90 days

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Useful URLs:
– Let’s Encrypt website: https://letsencrypt.org/
– Let’s Encrypt registration online tool: https://zerossl.com/
– Godaddy: https://uk.godaddy.com/
– Where the heck is Cpanel? Check this: https://youtu.be/3WuGpsIIlc4

You’ll find more tutorials here: http://punchsalad.com

If you have any questions, leave me a comment below, I will be glad to help. I hope you liked this tutorial!

 

 

FREE SSL Tools

FREE SSL Certificate Wizard.

This tool helps you to obtain SSL certificates for your website. They are issued by Let’s Encrypt Certificate Authority and they are absolutely free. The renewals are also free and unlimited. Issued certificates are supported by all major browsers and operating systems.

The certificates are of Domain Validated (DV) type. That means you will only need to confirm your ownership of the domain name. The confirmation process is very simple and there are two options to choose from: DNS verficiation and HTTP verification. The former requires creating a specific DNS record of TXT type for the domain. The latter requires creating a plain text file with a specific content on your web server. Choose the option you are most comfortable with – normally all registrars provide a way to edit DNS records, but you might like creating a text file better. DNS verification also might take a bit longer depending on how quickly your registrar’s servers publish the changes (usually within 15-20 minutes), while HTTP verification can be instant.

The certificates are initially valid for 90 days and then can be renewed again and again (also at no cost). Please consider entering your email when using our FREE SSL Certificate Wizard for the first time and registering a new key – that will give you a way to restore your key if you lose access and will provide notifications from Let’s Encrypt about certificate expirations. Please note that we do NOT collect or store your email – it gets directly submitted by your browser to Let’s Encrypt via HTTPS-secured link shall you decide to enter it. If you don’t want expiration reminders to be sent, you can leave it blank.

Our service is fully automated. All the keys, regardless of whether entered or generated on site, are only used by your browser to sign appropriate messages while directly communicating with Let’s Encrypt API servers over an encrypted connection. The CSR (Certificate Signing Request) is also sent directly by your browser to Let’s Encrypt Certificate Authority. Finally, the certificate is also downloaded by your browser directly from Let’s Encrypt via an encrypted connection. None of this information is ever seen by our servers.

How to use

The FREE SSL Ceritificate Wizard is making the whole process of getting SSL certificate quick, straightforward and easy to understand. It has minimum fields to fill and just 3 steps – “Details”, “Verification” and “Certificate”, which should be easy to go through even if you do not have any technical knowledge about SSL and how keys and CSRs are created.

The “Details” screen

  • “Email” – Enter it if you want to receive notifications about domain expirations and also for the purpose of being able to restore access to your account if you ever lose your Let’s Encrypt key. Please note that if you are using an already registered Let’s Encrypt key, then email will be ignored. This field is optional and can be left blank.
  • “Let’s Encrypt key” – You can either use an existing key or leave this area blank to generate a new 4096 bits key for you. Please note that regardless of whether the key is created or entered, it never leaves your browser and it is only used by your browser to sign the messages exchanged between itself and Let’s Encrypt API servers over an encrypted connection.
  • “Domains” – Enter the domain or the list of domains the certificate should be issued for (separated by either whitespaces or commas). Please note that this field is only needed if you are not using the “CSR” area, in which case the domain names will be read from the CSR. If “Domains” is used, then on clicking “Next” your CSR will be created and put into text area below, while the “Domains” list will be cleared.
  • “CSR” – This area is used when you already have the CSR (Certificate Signing Request), in which case the “Domains” field should be left blank. It also gets populated with a generated Certificate Signing Request if you leave it blank.
  • “Verification” – you can choose between “HTTP” and “DNS” verification types. Choose “HTTP” if you want to verify your domain ownership by creating a text file on your server. Choose “DNS” if you want to verify your domain ownership by creating a TXT record in your DNS (for example if you cannot create a file on your site or your site does not exist yet, but you can edit the DNS records of your domain).

Please note that if a key or a CSR has been generated, then clicking “Next” will not let you move to the next screen until you either download or copy newly created key/CSR (you can use appropriate buttons in the top right corner of each text area).

Also note that if CSR is generated for you, it will be based on a new automatically generated 4096 bits key. If you prefer CSR to be based on your existing key (for example generated with openssl command line), then you should use the “CSR Generator” first and then paste created CSR into the appropeirate field of SSL Ceritificate Wizard.

Important: If you don’t have a CSR and you need your certificate for some AWS service (such as API Gateway or CloudFront), then use our “CSR Generator” first and choose 2048 bits – after that use created CSR with SSL Certificate Wizard. This is due to the limitations regarding the maximum key size for AWS services.

The “Verification” screen

This screen does not require you to enter anything. It shows what needs to be done to prove your domain ownership. If you are using HTTP verification, then for each domain on your certificate you will be given a name and the content of the file to be created. Each name is also a link, so after you have created a file, you can click that link to make sure that the file is actually accessible and the content of it is what it should be. If you are using DNS verification, then you will be given a name for the DNS TXT record and its value. It will also show you how to check that your DNS changes became “visible”.

After creating a file or making DNS changes (and making sure those are visible) you can click “Next”. If everything is done right, you will be moved to the final screen (“Certificate”). If any error happens, then you will see verification results for those domains which have failed verification. After reading the results, click “Next” for the “Verification” screen to be displayed again with the new values for the domains which have failed. There will be no need to re-do those domains on your list which have succeeded verification.

The “Certificate” screen

This is the final screen of the wizard. You will have your certificate on it, which you should either download or copy. The certificate contains both your domain certificate and the issuer’s certificate. If for some reason issuer’s certificate could not be retrieved, you will see a proper warning. If you had your CSR generated, then you will also see your domain key here. It is important to download or copy it too – your certificate will not work without it. If you used an existing CSR on the “Details” screen, then there will be no domain key shown, since you should already have it. Please note that the domain key is not (and should not be) the same as your “Let’s Encrypt key”.

For the renewal just repeat the process but use your previously created Let’s Encrypt key and CSR on the “Details” screen. Please note that you do not need to use your domain key during the renewal. Also note that when you are using previously created (or created elsewhere) CSR, the last step will only have the certificate file shown but not the corresponding domain key – that key will just be the same as when you created your CSR.

 

 

https://zerossl.com/installation.html