Install Let’s Encrypt in GoDaddy – SSL Certificate for free in 10mins

Install let's encrypt on godaddy

Sharing is caring!

Hello Internet People!

In this article, you will learn how to install Let’s Encrypt in GoDaddy with an online tool called Zerossl. I’m using Godaddy, but this should work on HostGator or any other hosting provider that has cPanel.

In addition, I will show you how to always redirect users from HTTP to HTTPS using just a few lines of code.

No coding skills required!

 

CONTENTS

What is Let’s Encrypt

Let’s Encrypt is free SSL certificate provider and verifier. It is becoming popular among small website owners, and even NASA is using it for some of it’s smaller sites (3000 different sites). So you are in safe hands using them.

Now the only con of let Let’s Encrypt is that you need to renew it every 90 days.

There is a way to setup Certbot to renew the SSL certificate automatically, but this requires knowledge of shell/terminal and might be too hard for beginners to grasp. So I want to cover it in this article.

How to install Let’s Encrypt in Godaddy or Cpanel

This tutorial is for people who want to get free SSL certificate using shared web hosting using zerossl.com installation tool. My examples will be using letsencrypt on GoDaddy shared hosting, but it will work on most other hosting providers.

  1. Go to https://zerossl.com/
  2. Click on online tools.
  3. Click on start, under “FREE SSL Certificate Wizard”.
    zerossl free ssl certificate wizard
  4. On the right-hand side, you have a field called “Domains”, add your domains to this. Include mydomain.com and www.mydomain.com. (Don’t include HTTP:// or https://).
    zero ssl enter domains

    Hot Tip! If it is a sub-domain such as blog.mydomain.com then you have to do it separately. So do all the steps just for a subdomain. Just include blog.mydomain.com in “domains field”. You don’t need to including www.blog.mydomain.com.

  5. Accept the zerossl TOS & let’s encrypt SA by adding check marks.
    accept zerossl tos
  6. Hit the next button in the top right corner.
  7. Zerossl will generate the CSR (Certificate Signing Request). Loading might take some time.
    zerossl download csr
  8. Once it’s done, click on the download button, to have a backup and click “Next” again.
  9. It’s going to start generating Account Key (Again might take a few minutes).
  10. Once done, download the Account Key and click on “Next” button.
    download letsencrypt account key
  11. The new page will appear. This is how Letsencrypt will know that you own the domain.
  12. Download the two txt files.
    download letsencrypt verification file
  13. Head to your cPanel and click on “File manager” and go to your root folder.


    Hot Tip!
      If you are doing this for an addon domain, then just go to the root of that domain. So where ever your index.html or index.php for that domain is.

  14. On root, create new folder .well-known and inside it create an acme-challenge folder. So your path should look like:
    mydomain.com/.well-known/acme-challenge

    Please note: You can just delete the .txt files you put in the /.well-known/acme-challenge once you are done, but keep the folders. You will need them in 90 days again.

    If the file .well-known does not show after making it.  Just do the following, when opening the File Manager select to show all hidden files & folders that start with “.” (dot) as well! Or just type “public_html/.well-known/acme-challenge” into the left menu and click “Go”.

    create acme challenge folder

  15. Upload the two .txt files (from point 12) inside the acme-challenge folder.Great tip from Rubab in the comments:

    As we downloaded two text files in step 7 & 8 , and the files that I downloaded on Step 12 weren’t really ‘text’ files but were simple files with no extension. So, when Step 15 asked to put 2 text files into .well-known/acme-challenge, I put the previous files there; that is why it was not validating the keys.

    upload vertification text files

  16. Go back to zerossl, and click on the link indicated in the screenshot.
    test zerossl verification worked
  17. If it returns you a page with numbers & characters, you are good to go. If not then check that the URL path contains mydomain.com/.well-known/acme-challenge and that the sting of numbers & words are the same as on zerossl.
    test successful
  18. Click on “next”.
  19. Voila! Your Certificate is ready now, scroll down and download the CRT & Private key.
    dowload CRT
  20. Go to Cpanel and find SSL or TLS and click on it.
    cpanel ssl tls
  21. Click on Manage SSL on your site and you should see three fields.
    cpanel manage ssl sites
  22. Select the domain you want to install the SSL certificate on.
    select domain in cpanel
  23. For other fields, go back to zerossl and copy the CRT and paste it into CRT field in Cpanel.
    Please note that CRT includes both CRT & Certificate Authority Bundle.
    copy crt from zerossl
  24. Cut out the Certificate Authority Bundle from CRT and paste it in the 3rd field.
    remove bundle
  25. Go to zerossl and copy private key.
    copy private key
  26. In Cpanel paste the private key in the 2nd field (Private Key)
    paste private key cpanel
  27. You should have three green check marks next to fields; this means everything matches.
  28. At the bottom of the page click on “install certificate”.
    install certificate cpanel
  29. Your SSL Certificate is now installed, and you should have https. Test that it works by adding https:// to in front of your domain for example https://www.mydomain.com.
    test ssl certificate works
  30. You should see the green padlock in front of your URL. If you get padlock with yellow batch, then you probably have mixed content issue. To fix it check out below video, which describes how to fix the mixed content warning or no green padlock.

Redirect always from HTTP to HTTPS

The redirection to HTTPS is easily achieved by adding a bit of code into .htaccess (Hypertext Access) file.

We will tell our Apache-based web server change all URLs with http:// to https://.

This happens before any code of your site is run.

Always redirect from HTTP to https:

  1. Go to Cpanel and click on the file manager.how to find htaccess file godaddy
  2. On the root folder, create a new file called “.htaccess”. You might have this file already, in that case, edit that file.
    add htaccess

    Hot Tip!  If you can’t see .htaccess file it might be hidden. Here is how to unhide .htacess file.

  3. In .htaccess file, add below code and hit save

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

code to redirect http to https

4. Test that this worked by typing http://mydomain.com it should change to https://mydomain.com
You are done!

Remember to update the SSL certificate every 90 days, I just sent a reminder in my google calendar and it takes me about 5 minutes to renew the SSL certificate.

Since your site is secure now, why not speed it up, so it’s lightining fast…

How to renew Let’s Encrypt with ZeroSSL

Here is a video of the renewal steps:

Unfortunately, there is no way to renew letsencrypt automatically unless you know how to use the terminal/shell and you have full access to your server. In that case, you can use CertBot and cron job to update automatically your SSL certificate.

If you are on shared hosting, using cPanel, Plesk or WordPress, CertBot is not an option.

Let’s encrypt renewal is easy, and you will need CSR, domain Key & account key. If you don’t have these, you have to request a new certificate from scratch, so scroll up to the beginning of this tutorial or for you lazy peeps click here to go up.

That said, it’s easy to renew Let’s Encrypt, and you can do it in 2-3 minutes using zerossl. I just have a calendar reminder every 90 days.

Common issues with Installation

Now I get it, it doesn’t always work out, and sometimes you might have some issues with the installation. Below is a collection of most common problems.

Installing the Let’s Encrypt SSL Certificate on Sub-domain

For anyone who is trying to set up with a subdomain ( ex blog.mysite.com, shop.mysite.com). You have to do it separately from the main website ( ex www.mysite.com, mysite.com).

You also have to upload the .well-known/acme-challenge files in the root of wherever your subfolder files are. So if they are in the web root (public_html/www) then one folder after that, say, blog, it would go in public_html/blog/.well-known/acme-challenge.

I only did this for blog.mysite.com and not including www.blog.mysite.com, and it worked for me. When i tried the www.blog.mysite.com, it didn’t work for me. Installing the Let’s Encrypt SSL Certificate on Sub-domain

Credit to Joel Buzzanco who left a comment on my YouTube video.

 

HTTPS Mixed Content Warning (website not fully secure)

Are you getting “mixed content on https” warning after installing SSL certificate? Does the browser tell you that SSL is not secure?

In most cases, the mixed content error is easy to fix. The most important step is to identify where the issues are with Chrome’s inspector and then it’s easy to update. This tutorial will show you a quick way to make sure you don’t get https not secure warnings

Summary of steps:
1. Inspect your website (right-click anywhere on the site, select “Inspect Element” and find “Console” tab).
2. Determine why do you have mixed content warnings.
3. Update the images, URLs, etc.

 

Mixed Content Warning on WordPress

Blocked by mixed content on WordPress after installing SSL certificate? You must be asking why is there no padlock?

In most cases, the mixed content error is easy to fix. The most important step is to identify where the issues are with Chrome’s inspector and then it’s easy to update. The video tutorial is captured in Chrome. However, you can use Firefox, Safari or Edge as well.

Summary of steps:
1. Update WordPress settings with https.
2. Check images & videos URLs.
3. Add http to https redirections.
4. Updated plugin code.

Let’s Encrypt on GoDaddy Plesk (Windows Shared Hosting)

The trick to getting this to work with Plesk is to fill out the online Form on GoDaddy under “Secure Your Site” and let GoDaddy create the Certificate Request (CSR). In this article, for cPanel you are having Zero SSL create that.

That won’t work for the Plesk Shared Hosting on Windows with GoDaddy because GoDaddy didn’t recognize the certificate. So, have GoDaddy create that request, copy it and PASTE that into the right panel of ZeroSSL. Then ZeroSSL will generate a certificate in the left panel that Plesk recognizes. It took two days to figure that out, but once I did, the site was secure within five minutes.

Thanks for the tip Damon Gray

404 error in the verification

I’ve hard that if you choose “DNS verification”, follow the instructions exactly and input it on you GoDaddy cPanel. (Note! I haven’t tried this, so I’m not sure this works. However some users have recommended this.)

In case you want to give it a try in ZeroSSL then follow the below instructions.

Anyone with 404 in the verification, insert the expression “text/plain .” in the MIME of the server (inside the MIME text box), to open files without extension.

You can configure MIME in “Internet Server Settings”, and remember to put the “.” at the end of the expression.

I was getting a 404 error when checking to make sure the 2 files are correctly connected.
My server is from GoDaddy, and I was not configured in MIME for my server to read files without extension.

This MIME configuration causes your server to read files without extension as if it were a .txt file.

I was getting a 404 error when checking to make sure the two files are correctly connected. My server is from GoDaddy, and I was not configured in MIME for my server to read files without extension. This MIME configuration causes your server to read files without extension as if it were a .txt file.

Credit to Carlos Fonsec who provided the answer.

Unexpected error[ Code: 400 ]

If you are getting “Unexpected error[ Code: 400 ] [ Status: Unable to update challenge :: The challenge is not pending. ]” in zerossl.com when you click the NEXT button, then try the following:

Try using the DNS options. I added a CNAME for “www”. You should see both text values returned when clicking the link. “Your certificate is ready!”

Credits to Matthew Upp for the solution.

Let’s Encrypt and WP Managed WordPress with GoDaddy

Unfortunately, GoDaddy doesn’t support 3rd party SSL with managed WordPress.

What you can do is install CloudFlare which comes with HTTPS. Here is my tutorial about how to install CloudFlare SSL in WordPress.

Otherwise, you can do what Colby did. You need to move from managed WordPress to Economy Linux Hosting with cPanel then transfer your website over (I used the plugin Duplicator basic) and then you can follow this tutorial it worked great for me!

Thanks to Colby Hearn for the answer.

 

How to fix “you must use an IP address that is on the server. “xxx.xxx.x.xxx” is not bound”.

So you might get this message: “You must use an IP address that is on the server. “xxx.xxx.xxx.xxx” is not bound”, while installing SSL certificate on GoDaddy with Zerossl.

I haven’t encountered this issue myself but here is how Roberto Villegas resolved it.

“I waited two days, and when i tried again. The SSL get installed with no issues, it appears godaddy have an problem with cpanel, at least it’s what they told me that when i called the first time.”

Another reader called Danny resolved it like this and left a comment in the comments below:

“I got the same error when I tried to add an SSL certificate to a domain that had no published content yet (i.e. no index.html or index.php, just an empty folder, except for a few hidden files & empty cgi_bin folder). Guess you need to have some actual content to secure, before you can secure it. Hope that helps somebody.”

Steve left his solution in comments below:

“I had a problem during installation that others might encounter as well. After I got all of my SSL keys and pasted them into the text boxes under the SSL manager in cPanel, it told me that my IP address was “not bound”.

After a bit of searching I found that you sometimes have to make a very minor change to your DNS settings in order to install your certificate.

If you’re having this problem, log in to GoDaddy, and click on your name up top, and go to “My Products”. Under “Domains”, click on the “DNS” button to the right of the domain name you want to install the SSL certificate for.

In the list of DNS items, one should say “A @ [Your IP Address] 10800 seconds”. Mine was set at 10800, anyway. Click the little pencil icon to the right and edit your settings. Change the time to 600 seconds instead.

This fixed mine right away! I was able to install my SSL certificate and my site automatically redirects to HTTPS.”

Also, Juan had a similar issue, he solved it with:

“Today I had a problem after full filling the SSL Certificate renewal: “IP is not bound”.

Problem is caused by old installed certificates, don´t know why… Just uninstall the SSL Website under SSL/TLS. This action will not delete files in /.well-kown/acme-challenge/ obtained and uploaded from http://www.zerossl.com.

Then repeat steps 26 to 28 herein at the tutorial and there you go! If it is a renewal use the green “autofill by certificate” button to fill the private key and then “install Certificate” at the bottom.

This worked for me, hopefully to everyone else.”

Missing SSL/TLS in GoDaddy menu

What to do if you don’t have the “SSL/TLS” in your GoDaddy menu. And you only see “SSL Certificates” which means it’s a paid SSL Certificate.

This limitation seems to be on different types of web hosting Economy & Deluxe Web Hosting Linux. It seems to appear for users in different countries (US & UK) too.

The only explanation for this I found was this Godaddy Forum post. Which tells that if you have Classic or web hosting that was bought some years ago, they might not have a way to install an external SSL certificate.

A workaround would be to use a CDN like Cloudflare which comes with it. It’s free until a certain limit of traffic, so if you have low traffic site this might work for you.

Cloudflare is CDN, not a hosting. Thus, you would still stay on GoDaddy. But Cloudflare would act like a layer in front of your hosting. Here is a video of how to install Cloudflare on WordPress.

 

Three green check marks in GoDaddy – Website still not secure

So you’ve followed the instructions in this tutorial, and after installing the certificate in GoDaddy’s cPanel, you get three green check marks (step 27 above).

install certificate cpanel

But when you go to your site it still gives an error similar to “Your connection is not private” or “Your connection is not secure “.

Thomas was able to resolve this bizarre issue the following way:

“GoDaddy didn’t know nor believe what i thought until I proved it. The presence of McAfee Trusted Advisor prevented the certificate from being seen.

In every way, as we earlier determined, it was valid and installed properly and even GoDaddy verified it. As soon as I unpublished it, https works. Hope this helps your work and knowledge base.”

So there is a chance that your SSL is blocked by other software such as McAffee.

 

Sharing is caring!

97 thoughts on “Install Let’s Encrypt in GoDaddy – SSL Certificate for free in 10mins

  1. Danny

    I get a 404 error when trying to verify. I have wordpress installed on my host, and I think it is stopping me from accessing files on my public home. I am unable to browse any files in my directory. Is there a way to get around this?

    1. Robert

      Hey Danny, this usually works with WordPress. Are you on MIME? Some users on my YouTube channel had similar issues.

      I’m not that familiar with MIME.

      Here is the video: https://youtu.be/GPcznB74GPs

      I took this from youtube Carlos Andre Fonsec comment:

      Anyone with 404 in the verification, insert the expression “text/plain .” in the MIME of the server, to open files without extension.

      I was getting a 404 error when checking to make sure the 2 files are correctly connected.
      My server is from godaddy, and I was not configured in MIME for my server to read files without extension.
      This MIME configuration causes your server to read files without extension as if it were a txt.

  2. Marc

    Hi, great tutorial, I followed it exactly and it worked great. Since then i have changed a few page names and added a few pages, now those pages show “not secure” in microsoft edge an chrome? Do i need to re-do the ssl process after changing page names and adding pages? Thanks

  3. Marc

    Ok, Thanks!! it’s exclamation point, mixed content warnings. I followed the video and looks fixable, i see the new images that caused it.. Also, in your video you changed the wordpress address to https:// ~ I have tried this twice and i get kicked out of wordpress completely and have to get go-daddy to reset it so i can get back in. So right now it shows http:// in both places (wordpress) but i’m secure except for the images i added that need to be fixed.

    1. Robert

      You are welcome, yeah the only downside with the free one is that you have to do it every 90 days, but it only takes 10mins once you know what you are doing. Cheerio!

  4. Hunter

    “”” There is a way to setup certbot to renew the SSL certificate automatically, but this requires knowledge of shell/terminal “””
    I didn’t see how to do this in the guide. Is there an article that covers the steps for this?

  5. G.A.

    I got to the point where I installed the certificate in godaddy cpanel and I received the following error:
    “error You must use an IP address that is on the server. “192.***.***.*” is not bound.”

    Any Ideas?

    1. Robert

      Hello, I haven’t had this issue, but one of other people left a comment:

      “I waited two days, and when i tried again. The SSL get installed with no issues, it appears godaddy have an problem with cpanel, at least it’s what they told me that when i called the first time”

  6. Danny

    Hi Robert. Thank you so much for your post and videos! I successfully added SSL certificates to all of my add-on domains in GoDaddy using your tutorial, but I am confused about adding SSL to my primary domain. My primary domain (let’s call it “primarydomain.com”) runs off of a WordPress install in the subdirectory public_html/wordpress. I tried applying this method on the root directory (i.e. creating verification folders at public_html/.well-known/acme-challenge, installing the CRT and KEY on primarydomain.com, and editing the .htaccess file in the root directory, public_html/.htaccess), and cPanel’s SSL manager said the installation was successful. But then I started getting errors from ZeroSSL when I tried to create certificates for all of my add-on domains. The certificate on primarydomain.com / root folder was conflicting with making certificates for the add-on domains, which are listed as subfolders within public_html (i.e. public_html/domain2.com, public_html/domain3.com). So, I removed SSL from the primary domain, and then I was able to finish making certificates for the add-on domains. So, my question is, where am I supposed to install SSL for the primary domain, without affecting the add-on domains? Since my primary domain runs off of public_html/wordpress, should I create the verification folders inside that folder, and generate the CRT and KEY for wordpress.primarydomain.com? Sorry for the long-winded explanation; you can probably tell I don’t do this stuff every day. Thanks again.

    By the way, here is a little insight into the error “you must use an IP address that is on the server. “xxx.xxx.x.xxx” is not bound” that G.A. experienced: I got the same error when I tried to add an SSL certificate to a domain that had no published content yet (i.e. no index.html or index.php, just an empty folder, except for a few hidden files & empty cgi_bin folder). Guess you need to have some actual content to secure, before you can secure it. Hope that helps somebody.

    1. Robert

      Hi Danny,

      When you tried to run it from public_html/ folder, were you able to access the .txt files from ZeroSSL on primarydomain.com/.well-known/acme-challenge ?

      what kind of errors was it giving you?

      I’ve installed the SSL for my primary domain on the root and my other domains are running without any issues.

      Thanks for the tip about the IP address, I’ll add it to the article.

      Let me know if you were able to resolve your issue.

      Regards,
      Robert

  7. Crownomancer

    you should add abit about “showing hidden files” in the go daddy file manager, as that might slow people down. im having alot of problems achieving this setup myself will let you know how i get on.

    1. Robert

      Hello Crownomancer,

      You have a point, I did have a link to an tutorial, but it seems that it doesn’t work anymore on Godaddy. I’ve found some information that seems to work. You just need to access file manager from the green top menu in cPanel.
      I hope you found the solution too.

      Regards,
      Robert

  8. B_Mac

    Have a site and having problems getting the padlock. It is a WordPress site and it is hosted on GoDaddy. I got the “I” circle beside the https://weburl.

    When I click it, it says “your connection to this site is not fully secure.”

    What now?

  9. Patti

    I’ve followed the instructions, but I keep getting a 404 error page. This is an addon domain and I’ve tried it both ways:

    public_html/.well-known/acme-challenge

    public_html/sharisteinbach.com/.well-known/acme-challenge

    1. Robert

      Hi Patti, for addon domain it should be public_html/sharisteinbach.com/.well-known/acme-challenge.

      are you able to access the file through your domain sharisteinbach.com/.well-known/acme-challenge/random-characters.txt (just replace the “random-characters with the file name you get from ZeroSSL”)?

      Also did you already add something to .htaccess file? if you have, see what happens if you remove the code from this article.

      Regards,
      Robert

  10. Micky Nicky

    After doing everything on Step 26 the green markings are not appearing neither is red marks
    infact upon hitting the Install button it gives an error message Communication failure

    1. Robert

      That’s strange, usually it shows the red check marks if any issues. Perhaps you can try to run the process again and get new certificates. I have multiple domains using let’s encrypt and I haven’t had issues like this one.

  11. Angela

    I am at the step where I verify. I have uploaded the files inside of acme-challenge folder. When I click to check the verification my wordpress site pops up with an error, instead of showing the text I am supposed to see. Do you know how to make this work?

  12. Steve

    Thank you very much, sir! A very good, informative video, and the chick in the GoDaddy shirt thing was hilarious! XD

    Anyway I just wanted to point out one problem I had during installation that others might encounter as well. After I got all of my SSL keys and pasted them into the text boxes under the SSL manager in cPanel, it told me that my IP address was “not bound”.

    After a bit of searching I found that you sometimes have to make a very minor change to your DNS settings in order to install your certificate.

    If you’re having this problem, log in to GoDaddy, and click on your name up top, and go to “My Products”. Under “Domains”, click on the “DNS” button to the right of the domain name you want to install the SSL certificate for.

    In the list of DNS items, one should say “A @ [Your IP Address] 10800 seconds”. Mine was set at 10800, anyway. Click the little pencil icon to the right and edit your settings. Change the time to 600 seconds instead.

    This fixed mine right away! I was able to install my SSL certificate and my site automatically redirects to HTTPS.

    Thanks again, brother! Hope this helps someone besides me. Peace.

    1. Robert

      Hi Steve,

      I’m glad this tutorial was useful and that you enjoyed the video.

      Thanks for sharing the solution that helped you. It seems a lot of people have this IP address issue. I hope this helps others too, I’ll add this to the article.

      Cheers,
      Robert

  13. Juan

    How to fix “you must use an IP address that is on the server. “xxx.xxx.x.xxx” is not bound”.
    Problem is caused by old installed certificates, don´t know why… Just uninstall the SSL Website under SSL/TLS. This action will not delete files in /.well-kown/acme-challenge/ obtained and uploaded from http://www.zerossl.com. Then repeat steps 26 to 28 herein at the tutorial and there you go! If it is a renewal use the green “autofill by certificate” button to fill the private key and then “install Certificate” at the bottom.

  14. Juan

    Hi, great tutorial. Today I had a problem after full filling the SSL Certificate renewal: “you must use an IP address that is on the server. “xxx.xxx.x.xxx” is not bound”;
    Problem is caused by old installed certificates, don´t know why… Just uninstall the SSL Website under SSL/TLS. This action will not delete files in /.well-kown/acme-challenge/ obtained and uploaded from http://www.zerossl.com. Then repeat steps 26 to 28 herein at the tutorial and there you go! If it is a renewal use the green “autofill by certificate” button to fill the private key and then “install Certificate” at the bottom.
    This worked for me, hopefully to everyone else.

  15. Richard Foster

    I am try to find SSL or TLS in the cPanel, but only see SSL Certificates. Clicking on this does not bring me to the 3 fields that you mention that i should see.

    I do not see any category with the heading of Security; I only see Popular Apps, Tools, Settings, Stats and Monitors, Databases and Premium Apps.

    Appreciate any help.

    1. Robert

      Hi Richard, it might be that your account doesn’t simply have this option. Which GoDaddy plan you have?

      On other hand, if your site doesn’t have too much of traffic, you could install cloudflare (CDN) it would add an SSL to your site. This is especially easy if you are using WordPress.

      Regards,
      Robert

  16. Richard Foster

    I have a very basic plan with GoDaddy. My site does not get much traffic since it revolves around dental assisting and dental hygiene education.

    I relatively recently changed the site over to WordPress, so I will take a look at cloudflare. Hopefully, the installation of the SSL with be pretty straight forward.

    Appreciate the quick response and suggestion.

  17. Ron Gee

    Great tutorial, thanks very much for the info. Will see how easy it is to renew in 90 days. There’s a tip on the email address field of the ZeroSSL site that says if you fill it in, a reminder will be sent to you when it’s time to renew. When I first installed the certificates, I got the same “not bound” error that several others got, but Steve’s solution about changing the time on the @ DNS record fixed that problem. Also, I found that going to Settings > General on the WordPress Dashboard and changing the website address from http to https helped with some issues.

    1. Robert

      Hi Ron, thanks for the feedback and I’m glad you were able to setup SSL despite some issues.

      I use a calendar reminder for the SSL and after doing it few times, it literally takes 5minutes to renew.

      Have a great weekend!

    1. Robert

      Hi Caasiah, it seems to me that you made it work? I’m able to access /test.txt.

      That said if your Godaddy is hiding some files, try to go to file manager from the top navigation bar. For some reason that has difference.

      I hope this helps.
      Robert

    1. Robert

      Hi Steven, I agree it looks intimidating, but in the end you are doing the following:

      1. Creating few .txt files in zerossl
      2. Creating folders in your file manager
      3. placing the txt files in the folder
      4. Copy + pasting the certificates to GoDaddy
      5. Copy + pasting code in your .htaccess file

      You can follow the video at the top of the post, maybe that helps with it.

      I hope this helps!

  18. Nik

    Hi Robert – Just want to thank you for a great tutorial. Worked like a charm! as I have 3 domains on goDaddy and managed to get all 3 installed without incident.
    Thanks for taking the time and sharing!

    1. Robert

      Hi Chuck, I believe Let’s Encrypt is designed purely to be a free tool for everyone to use, with the limitation of 90days.

      I would suggest buying an SSL from your hosting provider, probably the easiest option.

      I hope this helps.
      Robert

  19. Rubab

    Hi,
    I am not sure if my previous comment is received by you as I can’t see it published here. So I followed the tutorial till the point where I placed the 2 text files successfully inside .well-known/acme-challenge directory. But the problem is that on the step 2. Verification, when I click on the file name, it opens the link http://techhivesolutions.com/.well-known/acme-challenge/m6AUMNotbj7wmL1-7vAY-vklMZxBdJIDPj6gPFJ83Q8 and renders my complete landing page instead of returning the number only. Consequently Verification gives me this error
    Invalid response from http://techhivesolutions.com/.well-known/acme-challenge/m6AUMNotbj7wmL1-7vAY-vklMZxBdJIDPj6gPFJ83Q8: “\r\n\r\n\r\n\r\n\r\n<meta "

    Any help on this would be appreciated.

    Thanks.

    1. Robert

      Hi Rubab,

      That’s strange. You probably have some code in .htaccess file that is redirecting all traffic to that page.

      It seems no matter what url I add to your website, it always lands on that page.

  20. Mit

    What’s your point to use Godaddy hosting while other hosting companies provide free and auto renewal Let’s Encrypt? I have a client who is using Godaddy hosting, I would like to let him leave this company

    1. Robert

      Hi Mit,

      Apologies for late reply. Not sure if the information is relevant any more but here it goes:

      Indeed, there are many other great hosting providers who provide free SSL with all accounts. I’m in process of moving to HostPapa.

      GoDaddy is globally known and their marketing engine is doing a great job of attracting people with cheap prices, but I don’t see any reason to stay with them. Smaller players have better service and better products.

    1. Robert

      I’m glad it worked Gloria and I appreciate you taking the time to write a comment.

      Just don’t forget to set a reminder in calendar to renew this in 90 days. Renewing is slightly easier than initial setup.
      When you’ve done this few times it only takes 5minutes to do.

      Have a nice day!
      Robert

  21. Kate

    Hi! Thanks so much for this! However, I’ve run into a problem. I do step 16 and get a 404 error. This is a main domain and the 2 txt files live at public_html/.well-known/acme-challenge/

    Can you help?

    Thanks!

    1. Robert

      Hi Kate, double check that the urls have .txt at the end. So yourdomain.com/.well-known/acme-challenge/somecharacters.txt

      If that doesn’t work just let me know what your domain is, I can try to check it. You might have some extra redirect.

      Cheers,
      Robert

  22. Rubab

    Hi,
    So I tried again today… and IT WORKED!!! 🙂 I was doing a very silly mistake before, sharing here so that someone else doesn’t repeat the same mistake. As we downloaded two text files in step 7 & 8 , and the files that I downloaded on Step 12 weren’t really ‘text’ files but were simple files with no extension. So, when Step 15 asked to put 2 text files into .well-known/acme-challenge, I put the previous files there; that is why it was not validating the keys. 😀

    Many thanks to Robert for providing such a comprehensive tutorial… I am looking forward to follow the renewal steps provided by you after 90 days.

    Many thanks again,

    1. Robert

      Thanks for leaving a comment about your progress Rubab. I’ve added your comment to point 15. I feel like others will benefit from it and they will avoid the same issue.

      Thanks for contributing!

      Robert

    1. Robert

      Hi Som, thanks for keeping it positive and dropping a comment! I’m glad it was easy and useful to you.

      Don’t forget to put a reminder in your calendar in 90 days to repeat this. Actually when you renew you can skip few steps since you have the files needed in the first page in zerossl.

      Have a great day!
      Robert

    1. Robert

      Hi Kole, the url you pasted doesn’t have .txt at the end, make sure you save the file with .txt at the end. You can check point 15. in the article. Another user had similar issues.

      Cheers,
      Robert

  23. Carmelo

    Hello Roberto,
    I installed the ssl certificate correctly, but I had the same problem as Thomas: The presence of McAfee Trusted Advisor prevented the display of the ssl certificate. How can I solve it?

    thank you so much.

    1. Robert

      Hi Carmelo, I think Thomas just unpublished McAfee, that’s how he solved it. Now I don’t know if made it work with McAfee later.
      I haven’t used McAfee before so can’t speak from experience. But I would assume McAfee might know how to make it work?

      Regards,
      Robert

    1. Robert

      Hi Yogesh, thanks for leaving a comment. Actually the green padlock only appears on some browser. Take a look in firefox and your website has green padlock. Chrome doens’t display this any more, it’s mostly grey.

      I hope that helps!
      Robert

  24. Jared M

    Hi Robert
    I have an unsecure site hosted with GoDaddy. GoDaddy is offering me the chance to upgrade to SSL, and I have been thinking of doing this so that my site will have the https prefix and the lock symbol. However, I am confused. On the web page for purchasing SSL certification, GoDaddy also offers an “EasySSL service”, which it says simplifies the process. So it sounds like just paying GoDaddy the money for the SSL Certification is not enough. There are other things I will have to do and they may be quite complex. But if I want to use GoDaddy’s EasySSL, I have to ring their phone number (in the US where I do not live) to get a quote. Ok…well I could probably do it myself, but what exactly is it that I need to do after I have paid GoDaddy for SSL certification? They don’t seem to give any information about this. So by googling the issue, I find your page and what looks like a very clear and helpful explanation as to how to do all this (for free). But wait. Do I first need to pay GoDaddy the annual fee for SSL certificates? Or will this work just with a basic GoDaddy site? It certainly looks that way insofar as my cPanel dashboard seems to allow me to do all the things you talk about.

    1. Robert

      Hi Jared, no need to buy the SSL from Godaddy for this to work. The only drawback is that you need to redo this process every 90 days. If you are okay with that (honestly take 5-10mins once you do it few times) then this tutorial is for you.

      I’ve only bought an SSL once with Godaddy, back then it was simple to install so if you want hassle free maybe that’s an option for you.

      I hope this helps,
      Robert

  25. Mayh27

    Please tell me how to get it back??? I put the strings
    RewriteEngine On
    RewriteCond %{HTTPS} On
    RewriteRule ^(.*)$ http://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
    to .htaccess and now I get my page with no pictures no videos no plugins working etc, and I have Not Secure sign as well!
    I removed strings from .htaccess but after that it still converts http to https automatically, so every time I see my pages broken and non secured!
    How can I remove this automatic conversion http to https please! I just want it back!

    1. Robert

      Hi Mayh, not having the images is normal, you probably have mixed content warning, you can check how to fix it on wordpress here or if you are not using wordpress then here.

      If you don’t want to automatically redirect, just remove the code and give it a bit of time (or use a browser in incognito) to view your page.

      I hope this helps!
      Robert

  26. Mayh27

    Thanx for reply, Robert.
    Yes I use it on WordPress.
    Now the situation went even worse. I get
    Forbidden
    You don’t have permission to access / on this server.
    Server unable to read htaccess file, denying access to be safe

    1. Robert

      did you do something for it to get worse? or it just went after refresh?
      It sounds like maybe something was deleted in htaccess file that should be there, do you have a backup of that file somewhere?
      If you do, then you can try to restore it. If not you can try to add the default code for WordPress, check this article . Just make sure you save your corrupt file.. just in case.

  27. Mayh27

    I just removed the strings you told. Now it has only this code:

    RewriteEngine On
    RewriteBase /
    RewriteRule ^index\.php$ – [L]
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /index.php [L]

    # BEGIN WordPress

    RewriteEngine On
    RewriteBase /
    RewriteRule ^index\.php$ – [L]
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /index.php [L]

    # END WordPress

  28. Mayh27

    I uninstalled all SSL but now I got
    NET::ERR_CERT_COMMON_NAME_INVALID
    Subject: *.prod.ams1.secureserver.net

    Issuer: Starfield Secure Certificate Authority – G2

    Expires on: 4 Apr 2020

    Current date: 8 Nov 2018

    PEM encoded chain:
    —–BEGIN CERTIFICATE—–
    MIIFgzCCBGugAwIBAgIIIgzmHIk1WdAwDQYJKoZIhvcNAQELBQAwgcYxCzAJBgNV
    BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMSUw
    IwYDVQQKExxTdGFyZmllbGQgVGVjaG5vbG9naWVzLCBJbmMuMTMwMQYDVQQLEypo
    dHRwOi8vY2VydHMuc3RhcmZpZWxkdGVjaC5jb20vcmVwb3NpdG9yeS8xNDAyBgNV
    BAMTK1N0YXJmaWVsZCBTZWN1cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIw
    HhcNMTgwNDAzMjA1NjAwWhcNMjAwNDAzMjA1NjAwWjB
    ……………….

  29. Mayh27

    Hello Robert! So, I could not resolve that issue. After long chats with techs of GoDaddy they strongly advised to prevent further problems uninstall all the SSL that is not of GoDaddy, than buy SSL from GoDaddy))) Anyway, couldn’t beat this issue, rolled back and uninstalled SSL so now I have everything I had before, excluding that browser periodically complains for ‘Privacy errors’… Maybe the other time I will try to install SSL from Let’s Encrypt again, but not very soon, I had enough.

Leave a Comment

Your email address will not be published. Required fields are marked *

*
*