Let's Encrypt SSL certificate overview

 

Overview

This article is an overview of Let's Encrypt certificates and how they are used at DreamHost.

Let's Encrypt is a Certificate Authority (CA) that offers FREE SSL certificates that are just as secure as paid certificates. You can add a Let's Encrypt certificate to your domain in the panel.

FAQs

Benefits of Let's Encrypt certificates

Key benefits of using a Let's Encrypt SSL certificate:

  • It's free – Anyone who owns a domain can obtain a certificate for free.
  • It's automatic – The installation and renewal process occurs automatically in the background.
  • It's simple – There's no payment, no validation emails, and certificates renew automatically.
  • It's secure – Let's Encrypt serves as a platform for implementing modern security techniques and best practices.

Should I use a professionally-signed certificate instead?

If your website is a business that's processing credit cards or transmitting sensitive information (such as an eCommerce site), or has a user login section, you should only use a paid professionally-signed certificate. This helps visitors ensure the connection is valid and secure.

Simple websites that need the same level of encryption without the absolute guarantee of ownership can continue to use a 'Let's Encrypt' certificate.

How long is the certificate valid?

Let's Encrypt certificates renew automatically every 60 days. 

If your site's Let's Encrypt certificate expires without successfully renewing, please contact support.

What level of encryption is available?

RSA-signed using 4096-bit RSA keys.

Are wildcard certificates available for use?

No. Although 'Let's Encrypt' offers wildcard certificates, it is currently not possible to use them at DreamHost. If you need SSL certificates on your subdomains, you must add them individually.

What browsers support Let's Encrypt certs?

Certificates are trusted in all major browsers.

See also

DreamHost links

Third-party links

Did this article answer your questions?

Article last updated PST.

Still not finding what you're looking for?