This topic is a mix of some other topics (see “related” at the bottom) and I just want to create a new topic, because this is something which may be a big question asked by many people.
So let’s image a scenario:
- Your website is hosted by a share-hoster.
- You only have FTP(S) access to your webspace.
- You can receive mails sent to your domain name.
- You can execute CGI/Phyton scripts in your webspace (often only under a special path like
- At a special website of the share-hoster you can input your certificate credentials, which will be applied to your site.
You have no:
- SSH or any other console access
- direct access to the configuration files of your webserver
The last requirement is necessary, because otherwise you have of course no chance to use your own certificate. But in this example certificates from StartSSL (StartCom) are currently possible, because StartSSL only requires mail validation.
However LE does it another way and there are already a few different authentication methods available. But most of them require SSH access as you have to execute the LE client and let it configure your webserver. Obviously, because of the restrictions listed above this is not possible.
So what way would be possible to get a LE certificate (manually)? After you got it you can just copy & paste it into the web interface of your hosting provider.
The following-up question of this would be Can you use the automatic (cron) certificate update while using manual mode first time?.