Saturday, 23 December 2023

Install Lets Encrypt SSL in Windows Server Plesk

 


Let's Encrypt is the world's biggest free SSL provider. Normally a certificate is provided for 3 months. So you have to re-install the certificate manually, if you are not using any auto-generated SSL generator client program like ACME Client. Many Hosting providers integrate auto SSL generator programs, Some are not like Godaddy.

I am using Godaddy Windows Server with Plesk,  Which doesn't support Let's Encrypt SSL . You have to install it manually using a third-party certificate generator like punchsalad.com. There are some steps to get  3-month SSL certificate given below.

SSL Generate Steps
  • Search Lets Encrypt SSL provider like  punchsalad.com.
  • provide your domain name. i.e. example.com,www.example.com
  • validate domain by two methods DNS or HTTP.
  • After successfully validating of domain you will get the certificate.

While validating the domain you have two options DNS and HTTP.  Choosing DNS is not a good option because you will have to add it by updating your domain record. Many problems you will while your domain is purchased by a third party because every domain provider has a different user interface. You may ask OTP which login in the domain provider or domain provider sends OTP every time when update DNS.

To avoid the problem in DNS domain validation you can choose HTTP validation is simple. You have to upload a file in the prescribed folder name and the domain will be validated. 

Follow The steps given below add SSL in your windows server plesk

Step 1 : 


  • In domain box enter your domain . i.e.  example.com,www.example.com
  • Provide email choose HTTP or DNS. if you want to validate by uploading a file to your server choose HTTP.
  • Click Create Button

Step 2 

  • Make folder in root of your website named .well-known
  • Make another folder named acme-challenge in .well-known
  • Create a web.config file in .well-known folder
  • Add code below in web.config file 

<?xml version="1.0" encoding="UTF-8"?>

<configuration>

    <system.webServer>

        <staticContent>

            <remove fileExtension="." />

            <mimeMap fileExtension="." mimeType="text/plain" />

        </staticContent>

    </system.webServer>

</configuration>


  • Download these two files and upload in acme-challenge folder 
  • Click verifiy domain
  • If you not create web.config file with given configuration then your domain will not validated while clicking on link.
Step 3
  • Once domain will be verified then you will get your certificate as given below picture

Step 4

  • Goto your plesk and choose SSL/TLS Certificate
  • Click Add SSL/TLS Certificate
  • Fill the form 
  • Copy private keys found in step 3 and paste
  • Copy CRT + CA Bundle found in Step 3 and paste in  certificate (*.crt) * textbox
  • Click the upload certificate button.
Step 5

  • Goto Hosting Setting from Plesk
  • Goto SSL/TLS Support and select your certificate name (Given in Step 4) from the drop-down list.
  • Click Ok Button







No comments:

Post a Comment