Let’s Encrypt for cPanel Installation Rumi, March 20, 2020 Option-1 Let’s Encrypt for cPanel Installation using Installing the cPanel Plugin Log into your SSH client at root level, then add the Let’s Encrypt repository with the following command: cd /etc/yum.repos.d/ && wget https://letsencrypt-for-cpanel.com/static/letsencrypt.repo Next, install the plugin for cPanel with line below and yum: yum -y install letsencrypt-cpanel The installation process usually takes about a minute. If all goes well and the installation was successful, a test should run automatically. If it renders similar messages as the example below, you’re good to go: le-cp self-test [SELF-TEST] Can read config ............ SUCCESS. [SELF-TEST] Can connect to daemon and check licence ............ SUCCESS. [SELF-TEST] Can connect to Lets Encrypt ............ SUCCESS. [SELF-TEST] Can talk to WHM API ............ SUCCESS. [SELF-TEST] Can talk to plugin RPC ............ SUCCESS. You can log in to your cPanel account and install your first SSL certificate. Installing a Certificate Once you’re logged into cPanel, you should see a Let’s Encrypt for cPanel button under Security. Click on it to access your active domains list to install a certificate. Click the <strong>Let’s Encrypt for cPanel</strong> button to get started installing some SSL certificates. Toward the bottom of the page, you should see the Issue a new certificate section. You should see a list of all your active domains including variations of them with and without a www. prefix. You can check multiple boxes to install more than one certificate at a time or click the Issue Single link beside the domain where you want your certificate installed. If you check multiple boxes, click one of the Issue Multiple links at the top or bottom of the list. You can install multiple certificates at a time or just one. Next, click the checkboxes next to the domains you don’t want to include if you selected multiple ones on the list on the previous page. Also select which domain you wish to be the primary one users are going to visit. If you use one of the domains to access your email, also check the box labeled Install mail SMTPS/POP3S/IMAPS SSL certificate. Finally, click Issue to install your certificates. Select which domains to include and install by clicking the <strong>Issue</strong> button. The installation process takes about 10 seconds, but can take up to 45 seconds depending on how many certificates you have selected to issue. When the process has completed, you should see a message letting you know the installation was a success. If something went wrong, try again. It usually works the second time around. When you return to the main page, you should see your domains with certificates installed listed at the top of the page. You can click the Remove links to delete certificates one-by-one, or the Reinstall link to renew the certificates before the expiry date. Option-2 Free Let’s Encrypt cPanel GitHub Plugin As with any plugin installed from GitHub, it’s important that you’re aware of the inherent risks. Since regular maintenance and security isn’t guaranteed across all plugins found on GitHub, you need to be sure you trust the developer. It’s a good practice to check out the developer of even recommended plugins from GitHub no matter who recommends them. For details about the developer of this plugin, check out the Let’s Encrypt cPanel plugin repository on GitHub. For more details on the precautions you should consider before installing plugins from GitHub, check out one of our other posts How to Find and Install Hundreds of Free WordPress Plugins from GitHub. Installing the cPanel Plugin Log into the root of your server with SSH and run this command to download the plugin package to your server: /usr/local/cpanel/3rdparty/bin/git clone https://github.com/Prajithp/letsencrypt-cpanel.git Next, go to the directory that was created for the plugin with the following line: cd letsencrypt-cpanel Finally, install the plugin by entering the command below: ./install.sh Once you receive a message that says Successfully installed letsencrypt manager you’re all set to install your first SSL certificate. Installing a Certificate Once you’re logged into cPanel go to Security and click the Let’s Encrypt link. You’re not going to see an icon accompanied with the link. We’re not being fancy here. On the management page, click the New SSL Certificate button. Manage and install a new SSL certificate in one click. Next, select one of your domains that you have registered to your cPanel account. Once you have made your choice, click the Submit button to start installing your certificate. Choose your domain name and click the <strong>Submit</strong> button to install your certificate. After about 10 seconds, you should be re-directed to the main page with a message letting you know the installation was a success. You should also see your domain listed on the page as well. Once your certificate is installed you should see a few details listed on the page for it. Next to your domain on the list, you should see that a certificate for your domain was installed automatically for both your main domain and with a www. prefix. You should also see the date your certificate expires as well as the number of days you have left until the certificate expires. Option-3 Free Official cPanel Plugin While this plugin needs to be installed to see it when you log into cPanel, there’s a chance it could come pre-installed in cPanel and WHM version 60. It’s not for certain yet only because extra testing needs to be completed by the folks behind cPanel before they can push out the change for everyone. Installing the cPanel Plugin For now, you can install the official Let’s Encrypt plugin for cPanel with one command: /scripts/install_lets_encrypt_autossl_provider The final installation steps need to be completed in WHM so go ahead and log in as the root user. Go to SSL/TLS > Manage AutoSSL and choose the Let’s Encrypt option under Choose an AutoSSL provider. Next, check the boxes for I agree to these terms of service and Create a new registration with the provider. You can also click the link to review the terms of service. Fill out the form to finish installing the plugin. When you have made your selections, click Save. You should see a small pop-over appear in a few seconds that lets you know the installation has completed successfully. Installing a Certificate It’s important to note that this feature only works if AutoSSL is enabled for the users where you want the SSL certificates installed. To enable this option for users, click the Manage Users tab, then select the Enable radio button next to the user account names where you want to install certificates. Click the Check button to enable AutoSSL. When the process has completed, you can go back to the main Providers tab and click the Run AutoSSL For All Users button. Click the button to install certificates for all cPanel user accounts. The process should only take a few seconds, but can take longer if you have many cPanel accounts and domains. Once the process is complete, all domains registed to all the cPanel accounts should have an SSL certificate installed. Also, you won’t have to worry about renewing the certificates since that’s all setup for you automatically. Wrapping Up That’s a wrap! Three options you can use to install SSL certificates using your cPanel account or WHM. Src: https://premium.wpmudev.org/blog/free-ssl-https-cpanel/ Administrations Configurations (Linux) CentOS 7cPanelLet's Encrypt