Currently, having a secure website is essential for establishing user trust. One of the most important steps to achieve this is to enable HTTPS, which requires obtaining an SSL certificate from a Certificate Authority (CA). Let's Encrypt has emerged as a free and accessible option for acquiring these certificates. Below is a detailed guide on how to install free SSL certificates using Let's Encrypt in 2025.
What is Let's Encrypt
Let's Encrypt is a Certificate Authority that provides free SSL certificates. These certificates are vital for securing communication between a browser and a web server, thereby protecting users' sensitive information. To obtain a certificate through Let's Encrypt, it's necessary to demonstrate control over the domain of the website. This process is carried out using software that implements the ACME protocol, which typically runs on the hosting server.
Verification of Shell Access
Before proceeding, it is important to determine if shell access (also known as SSH access) is available on the hosting server. This access is crucial if certain installation methods are to be used. If site management is conducted through a control panel like cPanel, Plesk, or WordPress, shell access may not be available. It is recommended to consult the hosting provider to confirm this information.
Installation with Shell Access
For users who have shell access, it is suggested to use the ACME client called Certbot. Certbot allows you to automate both the issuance and installation of certificates, minimizing the downtime for the website. This tool is easy to use, compatible with various operating systems, and has extensive and useful documentation. It is advisable to visit the official Certbot page where specific instructions can be found based on the operating system and web server in use.
If, for any reason, the features of Certbot do not meet the user's needs, there are multiple alternative ACME clients. Once an ACME client is chosen, consult the corresponding documentation to continue with the installation process.
If experimenting with different clients, it is recommended to use a staging environment to avoid exceeding the rate limits set by Let's Encrypt.
Installation without Shell Access
For those who do not have shell access, the simplest option to use Let's Encrypt is through the built-in support offered by many hosting providers. If the provider has this functionality, the user can request the issuance of a free certificate on their behalf, which will be installed and maintained automatically. Some providers allow configuration adjustments to enable this option, while others do it automatically for all their clients.
It is advisable to check the list of hosting providers to verify if the contracted service offers support for Let's Encrypt. If so, it will be necessary to follow the documentation provided by the provider to configure the certificate.
If the hosting provider does not support Let's Encrypt, users can express their interest in this matter. Providers are often willing to consider customer suggestions to implement new features.
In case the provider is unwilling to integrate Let's Encrypt but does allow the uploading of custom certificates, one can opt to install Certbot on a personal computer and use it in manual mode. This method involves uploading a specific file to the website to verify control over it. Certbot will generate a certificate that must then be uploaded to the hosting provider. However, this process is not recommended due to the need to repeat it several times a year, each time the certificate expires. For most users, it is preferable to request support for Let's Encrypt from their hosting provider or consider switching providers if they have no plans to implement it.
Final Considerations
Online security has become increasingly vital in today's digital age. Obtaining a free SSL certificate through Let's Encrypt is an essential first step toward protecting user information and enhancing the credibility of the website. Following the guidelines outlined in this guide will facilitate the installation process, regardless of whether shell access is available or not.
Remember, for a successful implementation, it is crucial to have a hosting provider that supports Let's Encrypt or be willing to make necessary adjustments if an alternative method is chosen.
For more information and tips on website management, we invite you to continue reading this blog.
