Categories

Backups and Recovery
5
Backups and Recovery
5
CloudLinux and CageFS
5
CloudLinux and CageFS
5
cPanel and WHM
8
cPanel and WHM
8
Domains and DNS
7
Domains and DNS
7
Email Hosting
6
Email Hosting
6
Getting Started
5
Getting Started
5
Hosting Company Operations
8
Hosting Company Operations
8
Reseller Hosting
6
Reseller Hosting
6
SSL and Security
7
SSL and Security
7
TOS/AUP
1
VPS and Dedicated Servers
10
VPS and Dedicated Servers
10
Web Design and SEO
8
Web Design and SEO
8
Website Builders and Apps
7
Website Builders and Apps
7

  Categories

  Support

My Support Tickets
Announcements
Knowledgebase
Downloads
Network Status
Open Ticket

Using Let's Encrypt SSL in cPanel Print

  • 0

Overview

Let's Encrypt provides free domain-validated SSL certificates. In cPanel hosting, certificates usually install through AutoSSL, Let's Encrypt, or SSL/TLS Status depending on server configuration.

Requirements

  • The domain must resolve to the server requesting the certificate.
  • HTTP validation paths must not be blocked by redirects, firewall rules, or .htaccess rules.
  • DNS must be correct for the root domain and www if both should be covered.

Steps

  • Confirm DNS points to the hosting server.
  • Open SSL/TLS Status in cPanel.
  • Select the domain names to secure.
  • Run AutoSSL or the Let's Encrypt issue action.
  • Test https:// and check for mixed content warnings.

Troubleshooting

If validation fails, check DNS, redirects, IPv6 records, parked domains, and whether the domain is behind a proxy service.

Detailed setup notes

Let's Encrypt certificates are domain-validated. The certificate authority must be able to confirm that the domain points to the server or that the required DNS challenge is present. In cPanel environments this is often handled by AutoSSL or SSL/TLS Status.

Validation checklist

  • The domain and `www` resolve to the cPanel server.
  • No stale AAAA record points IPv6 traffic somewhere else.
  • HTTP requests to validation paths are not blocked.
  • Proxy/CDN settings are not hiding the origin in a way that breaks validation.
  • The domain is not suspended.

After installation

Force HTTPS only after confirming the certificate works. Then check for mixed content, update application URLs, clear caches, and test forms, checkout pages, login pages, and webmail links.

Reference links

  • Let's Encrypt Getting Started: https://letsencrypt.org/getting-started/
  • cPanel AutoSSL: https://docs.cpanel.net/whm/ssl-tls/manage-autossl/
  • cPanel SSL TLS Status: https://docs.cpanel.net/cpanel/security/ssl-tls-status/

Security baseline

  • Use strong unique passwords.
  • Enable two-factor authentication.
  • Keep software updated.
  • Remove unused users, scripts, themes, and plugins.
  • Review logs after suspicious activity.
  • Use backups before cleanup or repair.

Quick support handoff

If this article does not solve the issue, open a support ticket with the domain, service name, exact error, time the problem started, and what changed recently.

Was this answer helpful?

Related Articles

ConfigServer Security & Firewall basics Overview ConfigServer Security & Firewall, commonly called CSF, is a firewall and login... Configure ClamAV Scanner Purpose ClamAV scans files and email for known malware signatures. It is useful for detecting... Basic hosting account security checklist Checklist Use unique passwords for WHMCS, cPanel, FTP, email, WordPress, and databases.... Mixed content after installing SSL Overview Mixed content happens when an HTTPS page loads images, scripts, stylesheets, or frames... Two-factor authentication for WHMCS cPanel and WHM Why it matters Two-factor authentication reduces the damage caused by stolen passwords. Hosting...
« Back

  Support

My Support Tickets
Announcements
Knowledgebase
Downloads
Network Status
Open Ticket