- Let’s Encrypt is the first free and open CAWe generate certificates using their ACME server by using domain validation.
- Private Keys are generated in your browser and never transmitted.For modern browsers we generate a private key in your browser using the Web Cryptography API and the private key is never transmitted. The private key also gets deleted off your browser after the certificate is generated. If your browser does not support the Web Cryptography API then the keys will be generated on the server using the latest version of OpenSSL and outputted over SSL and never stored. For the best security you are recommended to use a supported browser for client generation. You can also provide your own CSR when using manual verification in which case the private key is handled completely on your end.
Frequently Asked Questions
- Are Wildcard Certificates Supported?They are not supported but you can add up to 100 domains and or subdomains per certificate. Just enter all the domains and subdomains you will use separated by a space (e.g. “subdomain.domain.com domain.com otherdomain.org“).
- Can I use my own CSR?Yes, just choose one of the manual verification methods and there will be an input at the bottom before the generate certificate button to provide your own CSR.
Automatically Verify Domain
Enter the FTP information for the domain’s server account to automatically verify the domain. It will upload verification files to make sure you own the domain. We do not store FTP information. You may need to whitelist 67.222.10.211 if you have a firewall and cannot connect. You may recieve a “504 Gateway Timeout” error when submitting the below form. This is an error with connecting to your server. Either the host or port is wrong or it is likely due to your firewall and you will need to whitelist 67.222.10.211.
Manually Verify Domain (HTTP Server)
If you do not have your FTP information then follow the following steps to verify domain ownership manually. The server will need to be on port 80 if HTTP or 443 if HTTPS.
- Get domain verification files by clicking the button below
- Upload domain verification files to domain (Need help?)
- Download your free ssl certificate
Manually Verify Domain (DNS)
If you do not have a web server on port 80 or 443 then follow the following steps to verify domain ownership manually through your domain DNS servers. If your domains do not point to a DNS server then you must point it to one beforehand.
- Get domain DNS verification TXT records by clicking the button below
- Edit your domains DNS server to include the verification TXT records
- Download your free ssl certificate
0 Reviews
