Newer version available (1.2.0):
Introduction
CertSage was designed for people of all ages and experience levels who want an incredibly quick and easy way to get Let's Encrypt certificates for their websites. CertSage is especially helpful if you are using a shared hosting plan that does not allow root access, such as GoDaddy shared hosting. It's free, of course!
Changes from Version 1.0.0
- Improved interface styling
- Now possible to submit multiple email addresses (or no email addresses at all). Email addresses on file are now always updated based on what's in the box when submitted, so don't leave the box blank if you want to receive expiration notifications! Submitting no email addresses results in having no email address on file (like an unsubscribe).
- Now possible to submit no domain names. This is useful for managing email addresses on file without needing to acquire a new certificate.
- Now only account key files are stored in the data directory. Previously, account urls and thumbprints were stored alongside account keys in JSON files. This was changed to minimize stored credentials and as part of streamlining CertSage for added stability. As a benefit, it is now very easy to use an account key from a different ACME client to take advantage of CertSage's features (like email address management or looking up your account ID so that your account can be added to the ECDSA allow list). The private account keys are now stored in
account.keyandaccount-staging.keyfor the production and staging environments, respectively. - For clarity, renamed certificate's private key file from
private.keytocertificate.key.
Requirements
PHP 7.0+
CertSage Installation and Usage
Assuming that your domain name is example.com...
- Download certsage.txt (25.2 KB).
- Upload
certsage.txtto the webroot directory of your website then renamecertsage.txttocertsage.php. The webroot directory of your website (often something likepublic_html) contains the content that you access when you visithttp://example.com. If you are hosting multiple websites on a single webserver, you will need to put a copy ofcertsage.phpin the webroot directory of each of your websites. - Visit
http://example.com/certsage.phpto get your certificate. Most people will want to enterexample.comandwww.example.comas their fully qualified domain names.
cPanel Certificate Installation
- Open a new tab in your browser, navigate to cPanel File Manager, then open the
CertSagedirectory (located one directory above your webroot directory by default). It's the same directory wherecode.txtis located. - Edit/view your certificate's private key file (
certificate.key) then copy its contents. - Open a new tab in your browser then navigate to the SECURITY section of cPanel.
- Open SSL/TLS ( not SSL/TLS Status ).
- Click Generate, view, upload, or delete your private keys.
- Scroll down to the Upload a New Private Key. section.
- Paste your certificate's private key into the box.
- Enter today's date as the description.
- Click Save .
- Click Go Back .
- Switch back to the browser tab with cPanel File Manager.
- Edit/view your certificate file (
certificate.crt) then copy its contents. - Navigate back to the SECURITY section of cPanel.
- Open SSL/TLS ( not SSL/TLS Status ).
- Click Generate, view, upload, or delete SSL certificates.
- Scroll down to the Upload a New Certificate section.
- Paste all of the certificates you copied from
certificate.crtinto the certificate box. - Enter today's date as the description.
- Click Save Certificate .
- Click Go Back .
- In the table, find the certificate with today's date under Description then click Install under Actions.
- Scroll down to the bottom of the page then click Install Certificate .
- Click OK .
- Don't be alarmed when you see red padlocks in the table next to some of the subdomain names. This is normal because those subdomain names are unused for this purpose.
cPanel HTTP to HTTPS Redirection
- Navigate to the DOMAINS section of cPanel.
- Open Domains.
- Expand the section for your domain name.
- Make sure the Force HTTPS Redirect switch is set to On.