Letsencrypt SSL Certificate Support

Discussion in 'Site Programming, Development and Design' started by david, Jan 21, 2016.

  1. Letsencrypt.org has begun issuing certificates to verified domain owners and I would like to add it to my site. I only see options to buy a certificate. How can I add a certificate otherwise?
     
  2. Ray

    Ray

    We had a couple of customers obtain SSL from Letsencrypt.org and installed it to our servers without any problems. However, we recommend you generate the CSR from us. Log into your Winhost control panel and click on the tab Sites and then click on your domain name. This should take you to the Site Info Manager of your Winhost account. Look for the icon labeled SSL Manager and from there you can generate a CSR from us. Copy that CSR and give it to Letsencrypt.org and they should be able to offer you back a SSL certificate. Take that SSL certificate and paste it inside your Winhost control panel under the Site Info Manager/SSL Manager page.
    Keep in mind that Letsencrypt will only issue a SSL certificate that has an expiration date of 90 days. Therefore every 90 days you'll basically have to go through this process again to keep your SSL certificate legitimate to the browser.
     
    smatthews1999 and Elshadriel like this.
  3. Excellent, thank you Ray. I'm aware of the 3-month expiration, but good to call out for others who might be looking.
     
  4. If I have multiple domains hosted and pointed to, can I install the cert for one domain? For example my site domain is foo.com, but I want to install cert for bar.com, so I entered "bar.com" in entering the CSR Common Name.
     
  5. I'm trying an letsencrypt enabled site: sslforfree.com and it is telling me that the CSR is malformed.. I have double checked my info several times.
    { "type": "urn:acme:error:malformed", "detail": "Error parsing certificate request. Extensions in the CSR marked critical can cause this error: https://github.com/letsencrypt/boulder/issues/565", "status": 400 }
     
  6. ianmc and Elshadriel like this.
  7. Greetings,

    I've created an Asp.Net Razor site in Visual Studio 2017.

    Anyway I was given a series of steps by Winhost support for getting free SSL certificate and went and used https://www.sslforfree.com. I followed those steps and used FileZilla to create the folders and upload the verification files to it.

    This is what's happening in those verification files after upload.

    http://consolecommander.net/.well-known/acme-challenge/QmYFVMuSLmxfMX7mm0TDugIZ4nU63YwirqGZpYVSgKs
    http://www.consolecommander.net/.we...e/pRUW_aF4v0EFfRwEOuS9iyhUNQ5jDIj_nL7Vusseeug

    It says in Firefox that there's a syntax error. It can't read the first character. I tried asking support about that but they just refereed me to the steps. Any advise you could give me would be appreciated. I retried to manually verify the certificates again and downloaded the new vericiation files more than once to make sure. If it helps here is the web.config file I am using.

    Code:
    <?xml version="1.0" encoding="UTF-8"?>
    <!--
      For more information on how to configure your ASP.NET application, please visit
      https://go.microsoft.com/fwlink/?LinkId=169433
      -->
    <configuration>
      <system.webServer>
        <staticContent>
          <mimeMap fileExtension="." mimeType="text/xml" />
        </staticContent>
      </system.webServer>
      <system.web>
          <trust level="Full"/>
          <compilation debug="true" targetFramework="4.6.1"/>
          <httpRuntime targetFramework="4.6.1"/>
        </system.web>
        <runtime>
            <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
                <dependentAssembly>
                    <assemblyIdentity name="System.Web.Helpers" publicKeyToken="31bf3856ad364e35"/>
                    <bindingRedirect oldVersion="1.0.0.0-3.0.0.0" newVersion="3.0.0.0"/>
                </dependentAssembly>
                <dependentAssembly>
                    <assemblyIdentity name="System.Web.WebPages" publicKeyToken="31bf3856ad364e35"/>
                    <bindingRedirect oldVersion="1.0.0.0-3.0.0.0" newVersion="3.0.0.0"/>
                </dependentAssembly>
            </assemblyBinding>
        </runtime>
    </configuration>
     

Share This Page