What is AutoSSL?

AutoSSL is a free alternative to paid SSL certificates included with the latest versions of cPanel and CentOS.
It takes the hassle out of paid certificates as there is no lengthy process involved each time renewal comes around and, as the name suggests, they renew automatically!

With AutoSSL enabled, your site is automatically secured with a free, Domain Validated (DV) SSL certificate. This means your SSL certificate will never lapse and there are no delays when it is due for renewal.

Do NewSprout Servers have AutoSSL?

Yes. All our servers that are running CentOS7 and the latest version of cPanel have AutoSSL enabled using Let’s Encrypt.
If any of our servers are not yet running CentOS7, they will be soon.

What happens when the AutoSSL expires?

AutoSSL certificates are automatically set up by our servers and are valid for up to 90 days. At the end of the 90 days, the certificate is automatically renewed by your cPanel account.
No hassle!

But I have subdomains and/or domain forwarding are these protected as well?

Let’s Encrypt certificates will automatically protect your primary domain, subdomains and forwarded or alias domains.

Quick Tip: Domain Forwarding allows you to redirect the domain back to any other domain name of your choice (If your domain is registered with us we offer this service for free).

So I have AutoSSL enabled for my site what else do I need to do?

You or your web designer will need to reconfigure your site to use the SSL certificate.
If you use WordPress this is as easy as going to your WordPress control panel and clicking on Settings. This will take you to the General page.
Look for the two headings: “WordPress Address (URL)” and “Site Address (URL)”
Update your site address in each field to show the https record: https://yourdomain.com.au

What are the main differences between AutoSSL and a paid SSL certificate

• Length of Validity
  • AutoSSL certificates are only valid for 90 days, however ours are set to automatically renew as soon as they expire. No work for you to do!
  • Paid SSL certificates are valid for anywhere from 1 to 5 years depending on what you pay for

• Validation Type
• AutoSSL provides Domain Validation. This shows you are the owner of the domain/site and displays the Green Padlock in the address bar.
• Paid SSL provides Extended and Domain Validation. This proves you are the owner of the domain/site and the organisation and displays the full green address bar as well as the green padlock.

Paid SSL certificates can also rank higher with SEO (Search Engine Optimisation) and are generally more suited for online shopping sites.

I can see the AutoSSL installed on my domain, but I want to purchase a paid certificate – can I do this?

For those of you who still wish to use our paid Trustico SSL certificates for Extended Validation (EV), we can certainly help.
When your current certificate is due for renewal, or if you have just signed up for a new domain, please let us know you would like to renew or purchase an SSL Certificate.
Our team will disable the AutoSSL feature for your site and install your Trustico certificate.

Can I use a service like CloudFlare or Sucuri?

Unfortunately Let’s Encrypt SSL is not compatible with CloudFlare or Sucuri protected sites or most services which proxy/ firewall your website.
However, if you do use CloudFlare you can generate an SSL certificate from their side to work for your site. Sucuri does have a solution as well. Read through their documentation for more information.

Great! Now, how do I cancel my existing paid SSL certificate?

When your existing SSL certificate is due for renewal you will receive an email notice from NewSprout.
You will have the option to continue with your paid certificate if you wish, or cancel it and our Support team will set up your Let’s Encrypt SSL certificate.

If you have any questions we have not answered here please let us know!