How to get SSL certificate, I have SSH and cPanel


#1

I have a basic hosting account with Namecheap. In cPanel, there is option to add an SSL certificate. So I guess, the setup supports adding HTTPS. I am not sure how to get the credentials to add in the particular area of cPanel. How can I use Let’s Encrypt with cPanel in Namecheap hosting ?

It’s a forum : http://appen.pw


#2

hi @Dilip

As this is a question about cPANEL permissions I would suggest posting this on a cPANEL forund or contacting your hosting providers

Andrei


#3

@ahaw021 Thanks for the reply

Namecheap says they do not provide support for Let’sEncrypt. Sad, but I am on my own.

What I have is a cPanel option and SSH access. Kindly guide me further.


#4

hi @Dilip

You are generally not going to have a good time with me by making statements like

Kindly guide me further.

This is because I don’t teach the traditional I have the answer here it is. You have a problem to solve - you provider does not support Let’s Encrypt on cPanel.

I would hope that your next steps would be to research options and if you need further input ask the questions in a constructive way

For example: i had a google around and think i need a client. I think client x is the one do you have any further examples etc.

Further example: I have had a look on this forum and here are some ways people suggest to work around it.

Andrei


#5

The fact is, I tried Google with " get let’sencrypt certificate ", which I would be needing to add in cPanel which has an option to add SSL certificates. But I got a couple of guides from Digital Ocean and Linode. Those were getting me confused with use in Namecheap. They were more of a hosting specific guides ( at least, appeared to me).

I was under the impression that I can simply make an account as in Akismet, reCAPTCHA etc, get some key / code which I can paste in the cPanel entry. But looks like the whole process is more complicated.

What I have tried so far ? Nothing, I have no idea where to start. Even after taking help from Google.

I even checked the suggested thread before posting this topic. Those were not good to me.

It would be great if someone can at least explain the process of acquiring Let’sEncrypt certificate and use it with cPanel which does not have a Let’s Encrypt plugin.

I know it would be easier if Namecheap do not promote their own SSL. But this is where I am, and I have no idea how to proceed further. Thanks.


#6

https://letsencrypt.org/docs/client-options/

Andrei


#7

I suggest you look at an alternative BASH based client

https://letsencrypt.org/docs/client-options/

ACME.sh is quite popular

You will still need to figure out how to install the certs on cPANEL as ACME.sh won’t do that for you

Andrei


#8

Without root and without a specific Let’s Encrypt plugin for cPanel, there are two things to consider:


#9

Another issue I face is, even though SSH is available, I do not know the root password. Since it runs on cPanel, it would be safe assume CentOS on my hosting.


#10

NameCheap doesn’t offer “basic hosting”, it only offers “Shared Hosting”, “Reseller Hosting” or even more pricier.

Should you even have a root password? Because with shared hosting, you probably shouldn’t have it :wink:


#11

I do not know. I have a hosting package ( which is not costly ) with them. I have no idea how to get a certificate from here and how to put in on my hosting. Namecheap refuses to support Let’s Encrypt usage. With that in hand, I could only rely on advices that I get from here.

My experience with using Let’s Encrypt is close to zero.


#12

Can you install a certificate through cPanel? Look for something called or containing “TLS” or “SSL”.


#13

@Osiris, @Dilip’s original post appeared to say yes:

@Dilip, the biggest problem here might be the lack of automation because you will have to redo the process every 90 days (at least) when the certificate is going to expire.

In addition to installing various software on the server that can help obtain the certificate, you could also choose to use a service like https://www.zerossl.com/ to obtain the certificate in your web browser (then you can upload it to the control panel). This might be easier for you if you’re not used to installing software on the server and administering it from the command line. As @Osiris pointed out earlier, there is still the issue that you will need to install the certificate afterward, which you can probably do using cPanel based on what you said at the beginning.


#14

This is what I have in cPanel


#15

Is it a service that offers HTTPS like Let’sEncrypt ?

Thanks for helping out. :slight_smile:


#16

Hi @Dilip,

Let’s Encrypt is the certificate authority which issues the certificates, but somewhat unlike certificate authorities, it has a public protocol or API which is used by software to obtain the certificates. So instead of getting them on Let’s Encrypt’s web site, you use some kind of client software to make the certificate request and then download and save the resulting certificate.

Many different kinds of client software for Let’s Encrypt exist, in fact perhaps dozens of them.

I work a bit on one called Certbot which is developed at the Electronic Frontier Foundation and is recommended by Let’s Encrypt. Certbot is meant to be installed by Unix system administrators directly on their servers and it obtains and (potentially) installs the certificates directly on Unix servers. However, this is only one of many options.

Another kind of option is “web-based clients”, which are web sites that you interact with in your browser and that replicate something somewhat like the experience of using a traditional paid CA, in the sense that the process at least appears to take place on a web site. However, the certificate that you ultimately obtain at the end is issued by Let’s Encrypt, just like the certificates that you would get using software like Certbot are. In that sense, these tools are just a different interface to the CA and to the certificate issuance process.

Web-based clients are potentially easier to use, especially for people without much system administration experience, because they don’t require installing software anywhere, and they can guide you through the process. The two most popular ones are

and

https://gethttpsforfree.com/

Each of these is developed by an independent developer, much in the way that the downloadable client applications also are.


#17

The thing that Let’s Encrypt actually offers is digital certificates which can be used by your own server to offer HTTPS. With these certificates, people visiting your site over an HTTPS connection will not receive browser warnings or errors. Without them, you could still use HTTPS but visitors will be told by their browsers that the identity of the site they’re visiting cannot be confirmed, or that its digital certificate is invalid or missing. The certificates are necessary in order to make HTTPS work properly for people who visit your site, but the HTTPS technology itself is actually implemented by your server software (such as a web server like Apache or Nginx, among other possibilities).


#18

Thanks again. I am trying to follow what you said. Will come back if I get stuck. :slight_smile:


#19

I used zerossl.com . I am not at the verification part. Not sure how to proceed further

Verification

To verify domain ownership using HTTP verification, you will need to create appropriate files with specific text strings under your “webroot/.well-known/acme-challenge/” directory, where “webroot” is the main directory with your website pages. Please make sure that the files you have created are actually accessible (by clicking the links below in the File column) and have proper content before clicking “Next”.


#20

Do you have a specific part of that instruction which is unclear or you have doubts you understand correctly?