Let’s Encrypt is a nonprofit organization that provides 90-day public SSL certs for free. Certify The Web is a tool that leverages Let’s Encrypt’s free certs.
Certify the Web has a great free option called the Community Edition that can manage up to five different certificates per install. They also have paid versions consisting of different levels that allow you to manage more than five – up to an unlimited number of certificates, depending on the package.
Certify the Web uses the HTTP or DNS mechanism. The HTTP methods requires that port 80 is publicly accessible from the internet, which could pose some potential security policy challenges. The DNS option integrates with multiple DNS providers using an API to perform TXT record verification with Let’s Encrypt. This does not require port 80 to be exposed to the internet.
We prefer DNSMadeEasy for this – it’s very simple to integrate with Certify the Web.
Once the certificate verification has been performed and issued, there are several deployment paths that can be orchestrated via the Certify the Web tool. This allows you to sequence any other actions that are contingent upon your cert change, like rebinding IIS, Microsoft Exchange, or application-specific port bindings. We use a combination of PowerShell and Task Scheduler in Windows to orchestrate these types of changes during predefined maintenance windows. You can do almost anything via PowerShell or REST API – nearly everything has a Command Line option for port bindings.
We partner with a few other technologies like KEMP, Fortinet, AWS, or Azure, that provide Let’s Encrypt integration.
There are options to automate and integrate these pieces together without spending a whole lot of money. The best thing about Let’s Encrypt is that there’s no cost to the certificates. When you automate SSL cert renewal with Let’s Encrypt you can save money AND time!
Sometimes enhanced security can create some additional attention and work, but at the end of the day it’s worth it. Let us help you simplify your public SSL cert management – there are several low-cost and easy options!