**Installing Let's Encrypt SSL Certificates**
**Overview**
Let's Encrypt, operated by the Internet Security Research Group (ISRG), is a free, automated, and open certificate authority (CA) that provides browser-trusted SSL/TLS certificates. These certificates:
- Are free of charge.
- Renew automatically every 90 days.
- Require no complex configurations or validation emails.
- Support multiple certificates for domains and subdomains.
- Are domain-validated and don’t need a dedicated IP.
- Are compatible with all major browsers.
As a gptservers.net customer, you can easily install Let's Encrypt certificates using the cPanel interface.
**Steps to Install Let's Encrypt SSL in cPanel**
1. **Log in to cPanel**: Access your cPanel dashboard at `https://yourdomain.com/cpanel` or via your gptservers.net Client Area.
2. **Navigate to SSL/TLS Status**: In the **Security** section, click **SSL/TLS Status** to view all domains and subdomains associated with your account.
3. **Select Domains**: Check the boxes for the domain(s) and/or subdomain(s) you want to secure (e.g., `yourdomain.com` and `www.yourdomain.com`).
4. **Run AutoSSL**: Click **Run AutoSSL** at the bottom. cPanel will use Let's Encrypt to issue and install the certificate automatically via the HTTP-01 challenge.
- The process typically takes a few minutes. A success message like "Certificate installed successfully" will appear.
5. **Verify Installation**:
- Return to **SSL/TLS Status** to confirm the domain shows a green lock and "Valid" status under **AutoSSL Domain Control**.
- Visit `https://yourdomain.com` to ensure a secure connection (padlock) with no browser warnings.
- Optionally, use SSL Labs (ssllabs.com/ssltest) to check certificate details.
**Prerequisites**
- Ensure your domain (and `www` subdomain) points to your gptservers.net server’s IP address (check DNS settings at your registrar).
- Parked or addon domains must resolve to the same IP, or remove them temporarily to avoid installation errors.
- Allow up to 48 hours for DNS propagation if changes were recently made.
- For wildcard certificates (`*.domain.com`), DNS must be hosted on your cPanel server, as third-party DNS providers may not support the DNS-01 challenge.
**Enabling HTTPS Redirect**
To ensure all traffic uses HTTPS:
1. Go to **Domains** in cPanel (under the Domains section).
2. Locate your domain and toggle **Force HTTPS Redirect** to "On."
- This redirects HTTP to HTTPS without manual `.htaccess` edits.
- Changes take effect immediately.
**Certificate Renewal and Management**
- Let's Encrypt certificates renew automatically via AutoSSL before their 90-day expiration.
- To manually renew, go to **SSL/TLS Status**, select the domain, and click **Run AutoSSL**.
- View certificates in **Security** > **SSL/TLS** > **Certificates (CRT)** (look for "Let's Encrypt" in the Issuer column).
- Note: Let's Encrypt limits issuance to 50 certificates per registered domain per week.
**Troubleshooting**
- **Installation Failure**: Verify DNS settings; ensure domains resolve to your server. Remove non-resolving parked domains and retry.
- **Mixed Content Issues**: Update your site’s internal links/images to HTTPS (e.g., use WordPress plugins like Really Simple SSL).
- **No AutoSSL Option**: Contact gptservers.net support to confirm Let's Encrypt is enabled for your account.
- **Wildcard Issues**: Ensure DNS is hosted on cPanel for wildcard certificates.
For further assistance, email support@gptservers.net or refer to cPanel’s documentation. Installing a Let's Encrypt SSL certificate enhances your site’s security and boosts SEO.
---
This paraphrased version combines the provided text with the previous context, simplifies the instructions, and replaces "QServers" and "qservers.net" with "gptservers.net" as per your instruction. It maintains clarity and adds practical details for a seamless setup. Let me know if you need further refinements or additional information!
