Auto-Install Free SSL
‘Auto-Install Free SSL’ automatically issues, renews and installs Let’s Encrypt™ Free SSL Certificate on WordPress website & also on all the websites hosted in a cPanel server.
This WordPress plugin works in cPanel shared hosting. You don’t need to have coding experience or server admin experience to set it up. Root access is NOT required. All you need is 8 minutes only. Install it, provide a few required information, and set up the daily cron job. You can even set up the cron job from this plugin with a single click. That’s it!
This WordPress plugin works on other web hosting control panels also, except for the auto-installation feature.
- Generate and Install a Let's Encrypt SSL Certificate for a Bitnami Application Introduction. Let’s Encrypt is a free Certificate Authority (CA) that issues SSL certificates. You can use these SSL certificates to secure traffic to and from your Bitnami application host.
- For automatic installation of free SSL certificate, you need the SSL installation feature enabled for your cPanel account. Case 1: This app uses cPanel API to install free SSL certificates. So, if your web hosting control panel is NOT cPanel and you have an option to install SSL certificate, this app doesn’t install SSL automatically.
- Free SSL Certificate for WordPress. Secure the traffic on your WordPress website with a free shared SSL certificate from Cloudflare. In this article, we’ll dive into SSL (Secure Sockets Layer) for WordPress websites, learning what it is, why it’s important, the different variations of SSL, and how to enable it for free on your WordPress website.
We used your previous (now old) tutorial on this exact same theme: Free self-updating SSL for WordPress on Google Cloud (Click-to-Deploy). Depending solely on your clear descriptions we configured WordPress Multisite Network with many websites on it and it all works flawlessly, all websites and sub-sites SSL are self-updating with no issues. Jan 12, 2019 Installing Free SSL Certificate and Setting up WordPress Once you have enabled your free SSL Certificate, you will need to set up WordPress to start using HTTPS instead of HTTP in all your URLs. The easiest way to do this is by installing and activating the Really Simple SSL plugin on your website.
- Automatic Free SSL Certificate issue, renewal, and installation in cPanel shared hosting. <- FREE of cost
- One-click Force SSL activation, i.e., HTTPS redirect, fix insecure links and mixed content warning, display the padlock in the address bar with only one click. <- FREE of cost
Features in detail
- ‘Auto-Install Free SSL’ works not only on your WordPress website’s domain but on all the websites hosted on your cPanel / web hosting.
- This WordPress plugin is capable of issuing WildCard SSL certificate for free!
- If you have cPanel shared hosting, the plugin will install free SSL certificate automatically.
- Choose the interval to renew SSL certificates. The default is 30 days before the expiry.
- This WordPress plugin saves the SSL certificates and private keys files above the document root (i.e., ‘public_html’).
- You have the option to set the directory name in which this plugin saves SSL certificates and private keys.
- Set the key length of SSL certificate as per your wish. The default value is 2048 bytes/bit.
- The plugin saves the sensitive information (password/API secret) in your WordPress database encrypting with the open SSL.
- There is an option to create a daily cron job with one click — no need to log in your web hosting control panel.
- Do you need to issue wildcard SSL? You get four DNS service providers for which the plugin sets DNS TXT record automatically: Cloudflare, Godaddy, Namecheap, and cPanel. If your DNS provider is not supported, you have option to set the DNS TXT record yourself. At the right time, this WordPress plugin sends an email that provides the required data to set the DNS TXT record.
- If the WordPress plugin automatically sets the DNS TXT record, it waits for 2 minutes before it sends challenges to the API of Let’s Encrypt for verification of your domains. If your DNS provider takes more than 2 minutes to propagate the TXT records, you have the option to make the plugin wait beyond two minutes interval.
- If you set the DNS TXT record manually, the plugin waits until the TXT record propagation complete. Some web hosting company may terminate the cron job if the DNS service provider takes longer to complete propagation. In that situation, you may wait until the next run of the cron job or choose non-wildcard SSL for each sub-domain.
- If your website currently doesn’t have an SSL certificate installed, this WordPress plugin provides an option to generate one free SSL certificate even before you configure the plugin. You get this option when you try to provide cPanel password or DNS API credentials over an insecure connection. So, no need to enter sensitive credentials on an insecure page.
- You can revoke any SSL certificate or change your Let’s Encrypt™ account key at any time.
- Fix insecure links & mixed content warnings and display the padlock with a single click.
- One-click revert to HTTP if required.
Minimum System Requirements
- Linux hosting (windows hosting is not supported)
- WordPress 4.1
- PHP 5.6
- OpenSSL extension
- Curl extension
- PHP directive allow_url_fopen = On
- For the automatic SSL certificate installation feature, your cPanel need to have the SSL installation feature enabled.
Case 1: This WordPress plugin needs cPanel API to auto-install the SSL certificate. If your web hosting control panel is any other than cPanel, the client can’t install SSL certificate automatically. In that case, you can install the issued free SSL manually.
Case 2: Do you have cPanel, but the SSL certificate installation feature is DISABLED? You need to request your web hosting service provider to enable the feature, or you may contact them to install the free SSL issued by this plugin.
For any of the case 1 and 2, all other processes are automated. The plugin sends an automated email in the event of issue/renewal of free SSL certificate. The email tells you the path details of the SSL certificate, private key, and CA bundle. You need to install the SSL yourself (case 1) manually or with the help of your web hosting provider (case 2).
Popular and most easy method
- Click ‘Plugins > Add New’.
- Type this keyword in the search box: ‘Auto-Install Free SSL’.
- Once you found the plugin click ‘Install Now’ button.
- Click ‘Activate Plugin’.
- Go to the “After activation” section below.
- Download the plugin from this page.
- Upload the plugin archive to the
/wp-content/plugins/directory and extract it.
- Go to the ‘Plugins’ page in your WordPress backend and activate ‘Auto-Install Free SSL’.
- Go to the “After activation” section below.
- After activating the plugin you see the ‘Settings’ link. Click on it.
- You get the dashboard of the plugin. You can also get this page from the admin menu at the bottom-left (below the default ‘settings’ menu) of your WordPress backend.
- You get the ‘Basic Settings’ option only, at this point. Click it and provide a little information with the form.
- Then you get other buttons like cPanel Settings, Exclude Domains, Add Cron Job. Click these buttons and fill in all the required information. Add the cron job.
- On the first run of the cron job, the plugin issues and installs an SSL certificate automatically. You receive an email for the same.
- Then go to the plugin’s dashboard. Click the ‘Activate Force HTTPS’ button (this button will be visible only after the plugin issue an SSL certificate). This one-click makes sure your website has no mixed content warning. Now the padlock appears in the browser’s address bar.
- Congratulations! You’re all set.
Support and Report a Bug
Please check the existing topics in the WordPress support forum before creating a new topic for support or reporting a bug.
- I developed this plugin based on the PHP client/app ‘FreeSSL.tech Auto’, which I developed with a massive rewrite of Lescript.
Let’s Encrypt™ is a trademark of the Internet Security Research Group. All rights reserved.
If you are running an ecommerce site, accepting credit cards, or passing information that needs to be encrypted, you’ll need to install an SSL certificate on your WordPress site. Having an SSL certificate will enable HTTPS and this ensures that no information is passed in plain text. In fact, we recommend all sites utilize HTTPS, as it has a lot of additional benefits beyond security.
Follow the steps below on how to install an SSL certificate for your WordPress site on Kinsta.
Prefer to watch the video version?
Option 1 – Free Cloudflare SSL
Install Free Ssl Wordpress Themes
On Kinsta, all verified domains are automatically protected by our Cloudflare integration, which includes free SSL certificates with wildcard support. This means that unless you have a specific reason to add a custom SSL, you won’t have to worry about manually configuring an SSL on Kinsta.
Option 2 – Install Custom SSL Certificate
Get Free Ssl Certificate
For users who prefer to go the custom SSL route, MyKinsta supports custom SSL certificates as well. However, we only support custom SSL certificates with wildcard support at this time. If your custom SSL doesn’t support wildcard domains, we recommend using our free Cloudflare SSL or purchasing a custom SSL that covers wildcard domains as well.
Step 1 – Purchase SSL Certificate
Purchase your SSL certificate from any vendor you like such as Comodo, DigiCert, GeoTrust, Thawte, or Trustwave. Kinsta supports all types of SSL certificates, including wildcard certificates.
Step 2 – Server Type
When purchasing a new SSL certificate, you are asked to provide the server type. The type of our web servers is Nginx, if that option is not available, then “Apache” or “Other” will work as well.
Step 3 – Generate CSR and Private Key
A CSR code will be needed by the SSL provider to create/sign the certificate file. For generating a CSR code and RSA key, please complete the following form: https://www.ssl.com/online-csr-and-key-generator/.
We recommend filling out every field, but at a minimum, you should fill in the following as seen in the example below:
- Common name (domain name)
- Email Address
- City / Locality
- State / County / Region
Note: For the common name field, if you are generating a wildcard certificate, you will need to input your domain name like
The form will generate you the private key file and the CSR. Make sure to save both of those as the certificate will be unusable without them.
CSR and private key
Upload your CSR with your SSL provider to regenerate your SSL certificate (.cert).
In MyKinsta, navigate to Sites > Your Site > Domains. Click on the dropdown menu next to the domain you want to add a custom SSL certificate for, and click Add Custom SSL Certificate.
Want to know how we increased our traffic over 1000%?
Join 20,000+ others who get our weekly newsletter with insider WordPress tips!
Next you’ll see a confirmation modal showing the domains that the custom SSL will cover. Click the Next button to proceed to the next step.
You will then be able to add your private key (.key) and certificate (.cert). Some customers will also need to add their intermediate certificate as well. Most SSL providers will email you a .crt file and a .ca-bundle file. Paste the contents of your .crt file in the “.cert file contents” section first and then the contents of the .ca-bundle file below it.
You can use a text editor like Notepad or TextMate to open the certificate and bundle files. If you don’t have or know your intermediate certificate you can use a free tool like “What’s My Chain Cert” to generate it. Click Add Certificate to finalize the configuration process.
How to Check Your SSL Certificate
After you have installed your SSL Certificate we recommend running an SSL check to verify that everything is set up correctly. Invalid SSL Certificates can cause your visitors to be faced with the “your connection is not private” error. Sometimes when you are using local web development solutions such as MAMP, you can encounter the “This Site Can’t Provide a Secure Connection” error, read our article about how you can fix it.
How to Renew Your SSL Certificate
SSL certificates don’t last forever, so you’ll need to renew them in some cases.
Free Cloudflare SSL Certificates
If you’re using our free Cloudflare SSL certificate for your site, you don’t have to worry about manually renewing the certificate because the renewal process is automatically handled by Cloudflare.
Custom SSL Certificates
If you have a custom SSL certificate, you’ll need to renew it with the SSL provider or domain registrar from which it was purchased. As long as it was renewed before it expires, there’s no need to re-upload it to the MyKinsta dashboard.
How to Force HTTPS
After installing an SSL certificate, you will have the option to “force HTTPS” in the MyKinsta dashboard. This feature allows you to automatically forward all incoming requests to HTTPS.
Our force HTTPS tool gives you two options – “force all traffic to the primary domain” and “use requested domain”. For normal WordPress sites, we recommend using the first option, which will force a 301 redirect to the HTTPS version of your canonical domain. The second option is useful for WordPress multisites which may have multiple domains assigned to the same Kinsta site.
Force HTTPS options.
At Kinsta, we support both free Cloudflare SSL certificates and custom SSLs. For most users, our Cloudflare SSL integration provides HTTPS support at no additional cost. However, if you have a specific use case that requires a custom SSL, we support that as well. If you have any questions about how to add an SSL certificate to your site, reach out to our 24/7 support team!
If you enjoyed this tutorial, then you’ll love our support. All Kinsta’s hosting plans include 24/7 support from our veteran WordPress developers and engineers. Chat with the same team that backs our Fortune 500 clients. Check out our plans