How to install Let's Encrypt SSL certificate on cPanel

In WHM, the manage AutoSSL interface allows the management of the AutoSSL feature, which automatically installs domain-validated SSL certificates. In the AutoSSL feature, the Let's Encrypt Plugin allows retrieving certificates from the Let’s Encrypt™ provider.

By default, the Let's Encrypt Plugin will not be enabled in WHM and only the cPanel’s default provider will be present as shown.

Installing Let's Encrypt plugin in WHM

The below steps can be followed to install the Let's Encrypt plugin first in WHM.

1. Execute the below command from the server command prompt.

   # /usr/local/cpanel/scripts/install_lets_encrypt_autossl_provider
   

   

2. Log in to the server WHM panel by using the below URL.

   https://IP address:2087
   

   NOTE: Replace the IP address with the actual IP address of the server.

3. Once logged in to the WHM, navigate to the Manage AutoSSL that is under the SSL/TLS section and select the Let’s Encrypt™ option under the Providers tab.

   

4. Once the Let’s Encrypt™ option is selected, the Terms of Service section will be shown. The terms can be reviewed from the link of the PDF file shown. Once this is done, select the I agree to these terms of service option and then click on Save.

   

5. Once it is saved successfully, a prompt will be displayed notifying that the AutoSSL has been configured to use the Let's Encrypt™ provider.

   

6. The current AutoSSL provider will be displayed as Let's Encrypt™. If the Let's Encrypt is selected and set as the default provider on WHM, it will provide all future SSL and Wildcard SSL certificates.

   

Installing Let’s Encrypt SSL Certificate for an account

Once the Let’s Encrypt SSL plugin has been installed and enabled in WHM, the Let’s Encrypt SSL can now be enabled for individual accounts on the server.

1. Click on the Manage Users tab from the same Manage AutoSSL page in WHM.

   

2. Select the check-box to the left of the cPanel user account for which the Let’s Encrypt AutoSSL feature is to be enabled and then click on the Enable AutoSSL on selected user button.

   

   Note: In the above example, the domain layerstacktest.com has been used with the cPanel user account being layerstack.

3. Once it is successfully enabled, a message prompt will be displayed that the AutoSSL feature has been enabled for the selected cPanel user.

   

   The Logs option can be used to check if the Let’s Encrypt™ SSL has been installed for the default domains of the cPanel account. The basic default domains include the main domain name, cpanel, webmail, webdisk, mail, www, cpcontacts, cpcalendars and * (wildcard) associated with the main domain name.

Uninstalling Let's Encrypt plugin from WHM

If the Let’s Encrypt plugin is no longer required to serve the AutoSSL feature in WHM and needs to be removed from the server, the below steps can be followed.

1. Execute the below command from the server command prompt.

   # /usr/local/cpanel/scripts/uninstall_lets_encrypt_autossl_provider
   

   

2. Once the plugin has been removed, this can be verified by logging into WHM and navigating to Manage AutoSSL option under the SSL/TLS section. The Let’s Encrypt™ option will no longer be shown under the Providers list confirming its removal.

   

Related LayerStack Products

• cPanel Server Control Panel
• GeoTrust SSL Certificates - RapidSSL®

Related Tutorials

• How to Migrate a cPanel Server to LayerStack

• Installing cPanel and WHM on Linux CentOS Cloud Servers

• How to manage DNS Zone Files in cPanel/WHM

• How to perform a Full Backup in cPanel

• How to access the Terminal Interface from WHM & cPanel

• How to install Let's Encrypt SSL certificate on Plesk Panel

• How to install an SSL certificate on cPanel

• Getting a free SSL certificate with Let's Encrypt with Apache on CentOS 7

• SSL Certificates with IIS web server on Windows Cloud Servers

• SSL Certificates with Apache web server on Linux Cloud Servers

• How to install an SSL certificate on Plesk Panel