Certificates are free thanks to the establishment of the Let's Encrypt CA.
Unlike with Cloudflare, which is a man-in-the-middle proxy, you fully control the keys and certificates used on your websites.
Due to the automated nature of Let's Encrypt, the certificates are of short duration. However, this is not a problem, because the plugin attempts renewal 30 days from expiry.
Only DV (domain-validated) certificates are available. This is because the validation for EV certificates cannot be automated, and is therefore not in scope for Let's Encrypt.
Wildcards are currently not supported by the Let's Encrypt service. However, we do allow you to simultaneously issue certificates for the 'www.' prefix of a domain.
Yes. We test and operate in production this plugin in CloudLinux + CageFS and Litespeed Web Server Enterprise environments. There are no known issues or caveats of any kind. There is no requirement to include any additional files in CageFS skeletons.
If the domain is "proxy-enabled", i.e requests go through Cloudflare before they come to cPanel, then the plugin will have no effect on visitors for that domain.
This is because Cloudflare is terminating the SSL instead of the cPanel server. At most, the benefit would be that you could implement the "Full (Strict)" mode of Cloudflare, where the Origin<->Cloudflare PoP connection passes x509 verification.
We will NOT be offering buyer's remorse refunds under any circumstances. We provide a trial for evaluation purposes, and you should perform all testing during this trial period.
If you require more than 72 hours to test the plugin, please contact support for a longer-duration evaluation.
For all other refund-related enquiries, please contact support.