Let's Encrypt Free SSL Certificate
Introduced in 2016, Let's Encrypt is a non-profit and open Certificate Authority (CA). You can request free SSL certificates (including wildcard & multi-domain certificates) from Let's Encrypt to enable https for your website/web app.
Who can go for Let's Encrypt certificates?
Both Let's Encrypt and commercial SSL certificates will do the encryption job that is expected of them in order to protect your sites against interception and eavesdropping.
Your choice will be determined by the type of site you manage, which in turn defines security requirements:
- If you own a simple personal site, a blog or a photo gallery, or just need a quickly configurable, simple and free SSL certificate that you can obtain with minimum effort purely for Google SEO improvement, then Let's Encrypt is a free option you can use.
- If you are an Mobile App developer and want to test connectivity and functionality between your mobile app and your web app server during the development period before launching your solution online, then using Let's Encrypt may be the right choice.
- If you are setting up a temporary website, or a website just for market testing, then using a free certificate from Let's Encrypt will save you some cost.
- If you are a server admin and you can use the CertBot client software on your Linux server, then you can automatically request and maintain Let's Encrypt certificates for domains hosted on your web server.
If you operate a full-fledged online store, or a business website/blog where you accept user registrations/payments/subscriptions, then you will need to invest in a paid, warranty-backed SSL certificate issued by an established CA.
Paid certificates are not at all expensive. We can help you get them at upto 85% off! view options
Let's Encrypt Certificate implications
Domain Control Validation MethodsLet's Encrypt has a fixed method of domain control validation (DCV or DV) to prove domain ownership and if you cannot validate using that method, you cannot get the certificate. Paid certificates offer upto 3 different DCV method options via Email/File/DNS to choose from as per your convenience. see details
Site SealLet's Encrypt does not provide a verifiable Site Seal for display on your website like the Comodo one at the bottom-right of this page. Studies show 69% of online shoppers look for websites that display trust symbols.
WarrantyLet's Encrypt certificates do not include a warranty against mis-use or mis-issuance. The paid commercial SSL certificates available on our website include a relying-party warranty that covers losses of customers caused by failure of the certificate while transacting with your website.
Validity PeriodLet's Encrypt certificates are only valid for 90 days and must be renewed/re-issued and setup once again on the website/web server before the previous certificates expire. The paid SSL certificates available on our website are valid for at least one year, and website owners can also choose a validity of 2 years to also reduce cost.
SupportLet's Encrypt does not offer assistance with requesting SSL certificates. Only community help is available for any problems encountered. This can be an issue for businesses that are just starting out with using SSL certificates, and need to quickly equip their business sites with an SSL. We provide support to generate and re-issue paid SSL certificates available on our website.
Let's Encrypt Certificate wizard
This Let's Encrypt Certificate wizard is an attempt to simplify the complex request & generation process for free Let's Encrypt SSL certificates, and will take you through the manual steps to get your free SSL certificate from Let's Encrypt so your website can use https for free. see benefits
The wizard works by generating commands for you to run in your terminal, then making requests to the Let's Encrypt ACME API to issue your certificate. If you don't know how to do something, try clicking the help links in the wizard that explain how to complete that step.
- Requirements for your local machine/server to run commands: openssl and echo. These should all be installed by default in Linux and Mac OSX. If you're running Windows, you might need to install Cygwin to get openssl and echo working on Windows.
- Access to website FTP or DNS settings based on your validation method.
Privacy: We do not record any personally-identifiable information, or any details submitted for certificate generation using the Let's Encrypt Certificate wizard. We also do not keep a record of Let's Encrypt certificates ordered via this wizard.
Terms: We do not charge any fees for using this wizard to generate free SSL certificates. Your usage of the Let's Encrypt Certificate wizard implies your acceptance of the following:
- The wizard is provided for use by experienced individuals who can use the OpenSSL library in a Linux terminal to generate keys & certificate signing requests (CSRs), and we will not help you learn to do so.
- We do not provide any kind of support for setup or installation of the generated certificates beyond the tips displayed for each step of the wizard.
- We also do not accept any liability, financial or otherwise, for issues arising out of generation/usage of these certificates.