SSL and Custom Name Server

I currently have it setup to allow people's domains to map to my WPMU. I want to figure out if there is a possibility to use Cpanel
AUTOSSL free certificates to provide https to all customer's domains User Avatar

My second query (if it is possible), is that a customer currently has hosting with Squarespace. They want a subdomain to point to my WPMU via an A record in their DNS.
With this, could they point a sub-domain via a record to WPMU and still get a ssl https://

  • Adam Czajczyk

    Hello Louis,

    I hope you're fine today and thank you for the question!

    I want to figure out if there is a possibility to use Cpanel
    AUTOSSL free certificates to provide https to all customer's domains

    As far as I understand, you would actually be adding all these domains to your cPanel to get auto-ssl issued and maintained for them. Simply setting an A record at the registrar wouldn't "trigger" auto-ssl. That means that regardless whether you are using our Domain Mapping plugin or just built-in WP mapping feature, you would have keep all the mapped domains on your cPanel.

    My second query (if it is possible), is that a customer currently has hosting with Squarespace. They want a subdomain to point to my WPMU via an A record in their DNS.
    With this, could they point a sub-domain via a record to WPMU and still get a ssl https://

    If they are pointing their domain/sub-domain to your site via A record, the first requirement for this to work would be your site running under dedicated IP. However, there is an SSL certificate needed for that mapped sub-domain too and that's usually a case of setting up a wild-card SSL at their end. I'm not sure about Squarespace options here, to be honest. If they don't have that, then you would have to make sure that this sub-domain is added as domain to your cPanel and that should work similar to the "auto-ssl" scenario.

    Kind regards,
    Adam

  • Adam Czajczyk

    Hello @louisgleason!

    A wildcard SSL will cover your main domain and it's all (existing and future) sub-domains but will not cover any mapped domain, regardless whether it's an add-on, parked or pointed via DNS A record domain. To protect those mapped domains you do need either a multi-domain SSL (which is not an automated solution, would require you to re-issue cert each time a new domain is mapped and can also be quite costly) or separate certs for each mapped domains.

    That means that you would need to use either Auto-SSL or manually setup a certificate for each of the mapped domains. Auto-SSL by default uses Comodo certs but in fact cPanel has included Let's Encrypt support so Auto-SSL can use it as well - automatically issuing Let's Encrypt certs. That, however, may or may not be available for you because it depends on the cPanel configuration which is set up by the host. So, if your host configured cPanel's Auto-SSL to use Let's Encrypt you would be able to automatically issue such certs. If not, then you need to either go for Comodo certs from "default" Auto-SSL or for manually issued and installed Let's Encrypt certs.

    That'd be with "regular domains" but I'm not sure about Squarespace - as you explained your customers would point subdomains via A record. I don't think Auto-SSL can actually issue a certificate automatically in such case. To get certificates automatically issued by Auto-SSL you will have to add each of these domains as add-on domains in cPanel.

    Otherwise, you would need to manually issue and install a certificate.

    Kind regards,
    Adam

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.