Last Updated: 13th August, 2022

Let us learn How To Install Let’s Encrypt SSL Certificate Manually In cPanel (Step-by-Step). To install Let’s Encrypt SSL Certificate we need to use a third party website that has been recognized or authorized by Let’s Encrypt to issue the certificates. Before we jump to the installation procedure, let us learn briefly about what is Hyper Text Transfer Protocol Secure (HTTPS) and why do we need Hyper Text Transfer Protocol Secure (HTTPS).

Why should we use SSL or https Encryption on our Websites?

“HTTPS” aka Hyper Text Transfer Protocol Secure is the secure version of HTTP, the protocol over which data is sent between your browser and the website that you are connected to. The ‘S’ at the end of HTTPS stands for ‘Secure‘.

It simply means all communications between your browser and the website are encrypted. HTTPS is often used to protect highly confidential online transactions like online banking and online shopping order forms. As a matter of fact, HTTPS has already become the Secure Online Presence Esteem and will grow more and more in near future.

Major Web Browsers such as Chrome, Firefox and Internet Explorer also displaying a padlock icon in the address bar to visually indicate that a HTTPS connection is in effect.

The major benefits of a HTTPS certificate are:

• Customer information, like credit card numbers, is encrypted and cannot be intercepted
• Visitors can verify you are a registered business and that you own the domain
• Customers are more likely to trust and complete purchases from sites that use HTTPS

About Let’s Encrypt

Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. It is a service provided by the Internet Security Research Group (ISRG).

Let’s Encrypt gives people the digital certificates they need in order to enable HTTPS (SSL) for websites, for free, in the most user-friendly way we can. They do this because they want to create a more secure and privacy-respecting Web.

The key features of Let’s Encrypt are:

• Free: Anyone who owns a domain name can use Let’s Encrypt to obtain a trusted certificate at zero cost.
• Automatic: Software running on a web server can interact with Let’s Encrypt to painlessly obtain a certificate, securely configure it for use, and automatically take care of renewal.
• Secure: Let’s Encrypt will serve as a platform for advancing TLS security best practices, both on the CA side and by helping site operators properly secure their servers.
• Transparent: All certificates issued or revoked will be publicly recorded and available for anyone to inspect.
• Open: The automatic issuance and renewal protocol will be published as an open standard that others can adopt.
• Cooperative: Much like the underlying Internet protocols themselves, Let’s Encrypt is a joint effort to benefit the community, beyond the control of any one organization.

Let’s Start How To Install Let’s Encrypt SSL Certificate Manually In cPanel (Step-by-Step)

For our tutorial we are going to use SSL For Free – Free SSL Certificates to generate the certificate.

1. Go to SSL For Free – Free SSL Certificates website in your preferred browser.

2. Enter the domain name of your website in the highlighted option and click on Create Free SSL Certificate option. Now the system will check and verify for your domain.

3. Now the page below will reload explaining how you will verify your domain ownership as well as highlighting the terms and conditions for using on the Let’s Encrypt Agreement. Finally click on Manual Verification which allows you for the manual certificate installation through your cPanel.

4. Here you get the detailed information, allowing you to Manually Verify the Domain.

5. The following screen will show Upload Verification Files information details. First, click on the two download links to download and save the verification files that will be used to verify the domain on the browser later.

6. Now login to your domain cPanel at https://www.yourdomain.com/cpanel, go to the File Manager, public_html folder.

7. Now once you are inside the public_html folder as shown above, create “.well-known” folder by clicking on +Folder icon.

8. Next you need to open the .well-known and add “acme-challenge“.

9. Now you need to upload the two files downloaded earlier. Click on Upload.

10. To verify successful file upload, click the links as shown below in the browser, no error will be displayed for successful upload. If there is no error on the browser, click on Download SSL Certificate.

11. The certificate files will be generated, i.e the Certificate, Private Key and CA Bundle. Go to the cPanel, scroll down to the security section and click on SSL/TSL section.

12. Then go to Manage SSL sites.

13. Copy the keys respectively starting with the Certificate, Private Key and the CA Bundle from the SSL For Free site.

14. Now paste the Certificate, Private Key and the CA Bundlethe keys respectively as shown below in your cPanel. Then click Install Certificate below.

15. Then go to the File Manager, public_html, search for .htaccess file, create it if it does not exist. This file contains the code that will allow the website links to redirect and use https:// for secure connections instead of http:// that is currently being used.

16. Select the file and click on Edit. Copy the code below and go to Save Changes.

For Non-WWW version (like I don’t want to use “www“, “vilabin.com” before my domain name) use the following code:

RewriteEngine On
RewriteCond %{HTTPS} off [OR]
RewriteCond %{HTTP_HOST} ^www. [NC]
RewriteCond %{HTTP_HOST} ^(?:www.)?(.+)$ [NC]
RewriteRule ^ https://%1%{REQUEST_URI} [L,NE,R=301]

For WWW version (like If want to use “www“, “www.yourdomain.com” before your domain name) use the following code:

RewriteEngine On
RewriteCond %{HTTPS} off [OR]
RewriteCond %{HTTP_HOST} !^www. [NC]
RewriteCond %{HTTP_HOST} ^(?:www.)?(.+)$ [NC]
RewriteRule ^ https://www.%1%{REQUEST_URI} [L,NE,R=301]

Congratulations!!! You just made your site “Secure” both for you and most importantly for your visitors! Just open any link of your website and enjoy the green secure https:// before your domain. That’s all! All your existing pages will now open with default https://.

Hey! Check out this cool plugin to rewrite all your urls to https! It’s called Really Simple SSL, and trust me it’s really that simple to use.

Just a word of caution, even when you are using any plugin or manually rewriting the urls, you need to double check that there is no “Mixed Content”, that means some with http and some with https. This will lead to huge errors and many other complexities. So just keep it in mind and restart your project with SSL (Secure Sockets Layer) and be proud to present your information towards your visitors and customers!