Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

Lets Encrypt

Lets Encrypt

This article relates to LoadMaster firmware version 7.2.53.

For more information about configuring and how Lets Encrypt works with Kemp, refer to the Lets Encrypt Feature Description.

Let's Encrypt is a free, automated, and open Certificate Authority (CA). It is a service provided by the Internet Security Research Group (ISRG).

Digital certificates are issued to enable HTTPS (SSL/TLS) for websites for free in a user-friendly way. The key principles for Let's Encrypt are:

  • Free: Anyone who owns a domain name can use Let's Encrypt to obtain a trusted certificate at zero cost

  • Automatic: Software running on a web server can interact with Let's Encrypt to painlessly obtain a certificate, securely configure it for use, and automatically take care of renewal

  • Secure: Let's Encrypt serves as a platform for advancing TLS security best practices, both on the CA side and by helping site operators to properly secure their servers

  • Transparent: All certificates issues or revoked are publicly recorded and available for anyone to inspect

  • Open: The automatic issuance and renewal protocol is published as an open standard that others can adopt

  • Cooperative: Much like the underlying internet protocols themselves, Let's Encrypt is a joint effort to benefit the community beyond the control of any one organization

As of LoadMaster firmware version 7.2.53, Kemp enables you to leverage the value of Let’s Encrypt certificates by automating the renewal and updating of certificates across your applications.

This includes:

  • Support for HTTP-01 domain validation method

  • Key generation

  • Certificate issuance (create Certificate Signing Request (CSR) and request certificates)

  • Automatic/manual certificate renewal and automatic updating of renewed certificates on the LoadMaster