How to certify our GoDaddy managed WordPress hosting?


#6

I am working on a Mac…

I don’t know much about the backend, so no I’m not comfortable with those instructions provided. Any help is appreciated. Thanks!


#7

In that case I don’t think malvadao’s technique is possible - I have very little experience with macs, but my understanding is that macs only have a few early FreeBSD userland utilities from back in the 90s when Next forked from BSD. I have no idea how macs access more recent *nix utilities. (I’m happy to be corrected if anyone has further information!)

I think your only option is to convince GoDaddy to provide a means (or buy one of their certs). You should re-read sahsanu’s above guide again. If that’s out of your comfort zone, I’m afraid Let’s Encrypt might not be suitable for you for the time being.


#8

Well I also have a PC. What exactly do I need access to? I’m not at all knowledgeable on this topic. Thanks DarkSteve


#9

Oh, sorry, I’m never as explicit as I think I am or intend to be!

I meant access to utilities such as sshfs, which is what allowed malvadao to mount his GoDaddy account as if it was part of his hard drive.

The initial release of Let’s Encrypt and it’s clients were written with *nix in mind, specifically linux, even more specifically Debian linux. I run FreeBSD, and even though linux and the BSD’s have a lot in common, it still took a few months before the clients were ported to FreeBSD and were reliable enough to use. While you can get the client running on a mac (OSX is derived from Next, which is derived from FreeBSD), I just don’t have sufficient knowledge of macs to help.

However…

You should check out the list of Windows clients for Let’s Encrypt. You’ll need something that can handle “manual mode” as describe by sahsanu above. What you’re doing is creating the certificate for your site, then you’ll need to manually add the certificate to your GoDaddy account.

Or, if you’re willing to wait a month or so, you can use Windows 10 with NeilPang’s acme.sh client, which is one of the most mature and powerful command line clients. The upcoming update to Windows 10 is going to contain the command shell Bash, and acme.sh has been tested and is working on the insider program’s test release. If you have access to the insider program test release of Windows 10 (or if you wait until the next major Win10 update) then I’d recommend using NeilPang’s acme.sh client.

Unfortunately, no matter what you do, it’s going to take a fair bit of reading in order to understand how to get what you need out of the client. It’s a steep learning curve, but it’s also very satisfying when you get there :sunglasses:


#10

Hey DarkSteve. How are you doing?

I think is possible create cert files from manual plugin in letscrypt. You can create directory and upload the file using FTP. The test will be possible this way.


E7E0 95DE 7D86 7A97 CC63 4611 6271 A2BE 9A47 DD8E


#11

If you have an ssh access to your godaddy host. you can use acme.sh.

Which is tested working on:

  1. Windows (with cygwin)
  2. Mac
  3. Linux
  4. Unix

You don’t have to be root. Any normal user can install and use:

curl   https://get.acme.sh  | sh

#12

Cool! Will test now :grin:


#13

After burning up a perfectly good weekend on my own version of this issue (GoDaddy hosted Drupal for me), I think I at least have an explanation of WHY none of the suggestions above work for me. It seems to me that certbot, acme.sh, gethttpsforfree, and anything else that attempts to verify a domain by writing then reading a file on a Drupal (and I imagine WordPress) site is going to fail. Drupal will always wrap that verification file in a php generated web page that will confuse the client.

Am I wrong? Is there a fix to all of these “Detail: Invalid response from
http://mydomain/.well-known/acme-challenge/REs8Uvbiv…” verification responses? Any help appreciated.


#14

That is correct. Take a look at this thread:


The last post leads to a Drupal bug report including a patch for Drupal’s .htaccess file that will make it work with /.well-known/acme-challenge.


#15

pfg, everyone, THANK YOU! I can walk outside in the sun again. Simple .htaccess fix was all it took. I had figured .htaccess held the keys, I’m just not well versed in .htaccess.


#16

Oh, I might also add that I ultimately used Neilpang’s acme.sh.


#17

I know this is an old topic, but I am trying to figure out how to use Let’s Encrypt’s certificate with a GoDaddy Managed WordPress installation. I was able to get as far as generating / installing the certificate with the WP Encrypt WordPress plugin. So I seem to have a certificate now, but the next steps have me stumped. The plugin’s instructions say:

Detect which Apache config file to edit.
Usually this file can be found at either /etc/httpd/httpd.conf or /etc/apache2/apache2.conf. In particular, you need to look for a file that contains multiple blocks.
A good method to detect the file on Linux machines is to use the command grep -i -r “SSLCertificateFile” /etc/httpd/ (the last argument should be the base directory for your Apache installation).

And I actually seem to be able to access my /etc/ folder through SFTP, however, I don’t have an HTTPD or APACHE2 directory there.

Anyone have any additonal ideas on what to do next? I doubt Godaddy is going to be of help on this, especially since they sell their own $69 SSL certs.


#18

Hi @EronC, does your management interface for GoDaddy allow you to upload certificates somewhere?


#19

Unfortunately, no. The WordPress plugin I used, just drops off the peices like so:

Certificate: /home/content/a2pnexwpnas02_data02/86/3448786/letsencrypt/live/www.domain.com/cert.pem

Certificate Chain: /home/content/a2pnexwpnas02_data02/86/3448786/letsencrypt/live/www.domain.com/chain.pem

Certificate Full Chain: /home/content/a2pnexwpnas02_data02/86/3448786/letsencrypt/live/www.domain.com/fullchain.pem

Private Key: /home/content/a2pnexwpnas02_data02/86/3448786/letsencrypt/live/www.domain.com/private.pem


#20

That’s generating the certificates (which is the first part of the problem), however you need to be able to install those certificates onto your server and, unless GoDaddy provide a method by which you can upload them into the server config, then you aren’t able to use them unfortunately.


#21

Thank you. That’s the conclusion I am drawing, because even though I can access the /etc/ area of the server, I can’t figure out how to set it up from there, and there is certainly nothing in their management interface for this.


#22

It might still be possible by editing some web server configuration files (again, depending on what GoDaddy does and doesn’t permit you to do under your plan). Do you know what web server software you’re using and whether you have permission to edit the web server configs?


#23

Setting up Free SSL with Let’s Encrypt on WordPress http://www.voudeals.com/blog/how-to-install-free-ssl-from-lets-encrypt-in-wordpress/


#24

Please explain in a step by step process about How to add Lets Encrypt SSL Certificate to Godaddy’s Managed Wordpress Hosting.


#25

What worked for me was to SSH into the server and use acme.sh to install and manage the SSL certificate. Works on bash shells and no root access needed and sets up a cron job to renew. This was in a WordPress installation btw. More info here:
https://tryingtobeawesome.com/encryptdaddy/