In this guide I will be showing you how to install a let’s encrypt wildcard using certify the web. With Certify The Web you can easily install and auto-renew free SSL/TLS certificates from letsencrypt.org and other ACME Certificate Authorities for your IIS/Windows servers or cPanel. Certify The Web is one good tool you can use to manage, install, and renew free SSL certificates for your Windows and other servers, it is also a Let’s Encrypt-powered Professional Certificate Management tool for Windows. For further similar guide on SSL certificate you can check these: How to enable LDAP over SSL with a third-party Certificate such as DigiCert, How to generate your trial SSL Certificate using DigiCert PKI platform, How to import SSL Certificate to Windows Server using DigiCert Utility, How to use the DigiCert certificate utility for Windows to create a CSR, Generate a self-signed SSL certificate: How to enable LDAP over SSL with a self-signed certificate.
To download this tool go here https://certifytheweb.com/
Navigate to the Settings tab and click on the Certificate Authorities. Make sure the Preferred Certificate Authority is on Let’s Encrypt. Click on New Account
Type your email address, agree and click on Register Contact
After registering then you can click on New Certificate and type *.yourdomain.com in the domain input field where the * means secure all subdomains under the primary domain and click on the plus sign.
Added a wildcard domain
if you prefer to add non-wildcard version you can click on Yes or No
Now click on the Authorization section on the right side and select dns-01 in the Challenge Type drop-down. In the DNS Update Method drop-down select (Update DNS Manually)
Now Click on the Test button to test the domain status if everything appears ok
To move forward you need to create a DNS (TXT) record in your DNS settings and you will receive a message like the one below in the email account that you configured earlier.
Open the DNS Settings and create your TXT Record.
Test in Progress
Once the test is successful you can go to the Deployment section and in the Deployment Mode drop-down you can select Certificate Store Only.
The reason for this selection is because this will store the SSL certificate in your local database. Note that the SSL certificate obtained through the Certify the Web application has a PFX extension that is not compatible with the Apache server by default, so we must convert that file to make it compatible with the Apache server.
After this then Click on Request Certificate.
Certificate ordering process.
SSL Certificate generated successfully
Now click on the Managed Certificates tab and click on Status to verify the certificate details. As earlier mentioned, that by default, the certificate is stored in the PFX extension and needs to be converted in order to be compatible with the Apache server.
So, on your local system create a directory where you will save the certificate and click on Tasks >> (Deployment Tasks) Add >> Deploy to Apache
Paste your certificate directory path into the first output field and append a back-slash and type “wildcard.crt” or “wildcard.pem”, then in the second output field paste the directory path and append a back-slash and type “private.key” and in the last output field paste the directory path and type “CA.crt” or “CA.pem”.
After click on Deploy to Apache,
Note: Before running the deployment task make sure to save it and run the task
Now open your cPanel to install these certificates.
You can either upload the certificate as a file or as a text.
You can now refresh your website and check the padlock icon and check if the site is now secure with Let’s Encrypt
I hope you found this blog post on How to install Let’s Encrypt Wildcard SSL Certificate in cPanel using Certify The Web very interesting and helpful. In case you have any questions do not hesitate to ask in the comment section.