Can Let’s Encrypt verify domain with self-signed certificate only?

Jesse Nickles | May 24, 2023

Yes actually Certbot does not care if your server is only currently setup with a self-signed SSL cert it will still read your /.well-known/ directory (unless denied access) and be able to verify your ownership of the server and then issue a signed LE cert for your domain. This feature is not very well documented or advertised by Let’s Encrypt but they have publicly confirmed this is by design and they will continue to verify domains on self-signed certs, even if major browsers refuse to load those page (e.g. “your connection is not private” errors).

About the Author

Jesse Nickles

Jesse is the lead developer for the SlickStack project and also for HoverCraft, the accompanying free WordPress theme. He has been customizing WordPress for both personal websites and SEO clients for over 15+ years, with a focus on simplicity and longevity.

Tags:

Can Let’s Encrypt verify domain with self-signed certificate only?

About the Author

Jesse Nickles

Please Donate

Forum Topics

Thanks to our generous sponsors for their support!

The Open Web

Recommended

Compare SlickStack

Email Newsletter

What To Expect

Solutions

Spread The Word