Page tree
Skip to end of metadata
Go to start of metadata


The Let's Encrypt™ plugin allows you to automatically provision cPanel accounts with Let's Encrypt SSL certificates for sites that do not already possess valid Certificate Authority-signed SSL certificates.


  • We introduced the script that loads this plugin in cPanel & WHM version 58.
  • In cPanel & WHM version 60, the system modifies the .htaccess file with the following rules:

    RewriteCond %{REQUEST_URI} !^/[0-9]+\..+\.cpaneldcv$
    RewriteCond %{REQUEST_URI} !^/[A-F0-9]{32}\.txt(?:\ Sectigo\ DCV)?$
    RewriteCond %{REQUEST_URI} !^/\.well-known/acme-challenge/[0-9a-zA-Z_-]+$
  • This plugin only integrates with the AutoSSL feature, which generates SSL certificates for cPanel accounts. It does not generate hostname certificates for your system's services.


To install the plugin, perform the following steps:

  1. Log in to the command line via SSH as the root user.
  2. Run the following command:


To disable and uninstall the Let's Encrypt plugin, run the /usr/local/cpanel/scripts/uninstall_lets_encrypt_autossl_provider command.


To select Let's Encrypt as an AutoSSL provider, use WHM's Manage AutoSSL interface (WHM >> Home >> SSL/TLS >> Manage AutoSSL).


Let's Encrypt imposes significant rate and domain limits. We strongly recommend that you read the Manage AutoSSL documentation and familiarize yourself with these limits before you select the Let's Encrypt provider for AutoSSL. For more information, read Let's Encrypt's Rate Limits documentation.

Additional documentation