There was a problem loading the comments.

How to Install a Free Let's Encrypt SSL Certificate in Plesk

Support Portal  »  Knowledgebase  »  Viewing Article

  Print

Quick answer: Install a free Let's Encrypt certificate in Plesk from Websites and Domains, SSL/TLS Certificates. Confirm the domain points to the server, click Install under Let's Encrypt, include www, then enable the permanent 301 HTTP-to-HTTPS redirect. Plesk renews the certificate automatically every 90 days.

Every site should run on HTTPS, and with Let's Encrypt the certificate is free and renews automatically. If your server runs Plesk, the built-in extension issues and installs the certificate in a couple of clicks. Here is the full process.

1. Confirm the domain points to the server

Let's Encrypt validates ownership by reaching your domain over the public internet, so the domain's A record must already point to this Plesk server before you start. If you just moved the domain, allow DNS time to propagate first.

2. Open the SSL/TLS Certificates tool

Log in to Plesk, go to Websites & Domains, select the domain, and click SSL/TLS Certificates. If the Let's Encrypt extension is installed you will see a Let's Encrypt button; if not, an administrator can add it for free from the Extensions catalog.

3. Issue the certificate

Click Install under Let's Encrypt, enter the contact email, and choose what to secure:

  • Tick Secure the wildcard domain only if you need to cover many subdomains (this requires DNS validation).
  • Tick Include www so both yourdomain.com and www.yourdomain.com are covered.
  • Tick secure webmail if you use Plesk webmail on the domain.

Click Get it free. Plesk requests the certificate, completes the challenge, and installs it automatically.

4. Force HTTPS for all visitors

Issuing a certificate does not redirect traffic on its own. In Hosting & DNS > Hosting Settings for the domain, enable Permanent SEO-safe 301 redirect from HTTP to HTTPS. Every visitor is now sent to the secure version.

5. Confirm automatic renewal

Let's Encrypt certificates last 90 days. Plesk renews them automatically through a scheduled task, so there is nothing to remember. You can verify the renewal date on the same SSL/TLS Certificates screen.

6. Fix mixed-content warnings if the padlock is missing

If the browser shows "not fully secure" after switching, the page is loading some assets over HTTP. Update any hardcoded http:// links in your site or theme to https:// (or protocol-relative URLs) so every asset loads securely.

Frequently asked questions

Does the certificate renew automatically?
Yes - Plesk renews Let's Encrypt certificates via a scheduled task, so there is nothing to remember.

Why does the padlock still show not secure?
The page loads some assets over HTTP; update those links to https to clear mixed-content warnings.

Plesk is included free on SoftSys managed VPS plans, and our team sets up SSL, the HTTPS redirect, and auto-renewal for you during onboarding. If you manage your own Plesk server, the steps above take just a few minutes per domain.


Share via
Did you find this article useful?  

Related Articles

Tags

© Softsys Hosting