I'm trying to force HTTPS redirects for my website on cpanel. (I've never worked with any of this technology before).
When I first inspect my SSL it says it's all good, and valid through Mar 18, 2022.
After doing some further inspecting, it says my certificate (CRT) expired on Jan 15, 2022 and to contact Let's Encrypt:
"You should request a replacement certificate from the issuer (Let's Encrypt) as soon as possible.
A certificate that remains active after its expiration date will generate security warnings in users’ web browsers."
And you are correct there is a wildcard certificate that covers pretty much any subdomain you may have.
The wildcard cert is active on https://www.flossdentalhygiene.ca and valid until March 3 2022. The certificate is not in use for your "apex" domain flossdentalhygiene.ca and most browsers will make a fuss as a result.
You can configure the same certificate for flossdentalhygiene.ca and www.flossdentalhygiene.ca and you'll be good to go until renewal time. March 3.
Sounds like you may be looking for more information and/or assistance than I have provided. If this is the case, then the volunteers here will need to know more about your server/service environment.
Would you please provide as much information from the following questions as you can so we can provide better help...
My domain is: flossdentalhygiene.ca
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know):
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
Let's Encrypt Certificates are 100% FREE. Wildcard certificates are by default designed to be used on multiple subdomains.
We are here if you need help. Go for it and good luck!
Rip
Note that individual web hosting providers could choose to charge for the use of a certificate (potentially even if there is no direct cost to them to acquire it). But most don't. As @Rip says, Let's Encrypt itself never charges anyone.