All Thinkific sites are covered by an SSL certificate by default. If you're using a thinkific.com URL, your site will be covered by our own certificate for Thinkific. When you're using a custom URL, we generate an SSL certificate for you via Let's Encrypt. More on that here.
If you would prefer to, you can also use your own custom SSL certificate. We cover that in more detail below.
Why use a custom SSL certificate?
For most customers, the certificates we generate via Let's Encrypt will work just fine! There are times when you may want to use a custom certificate, though, including:
- If you already have your own SSL certificate - If you've already got a certificate that you're using for another external site, you can use the same one for Thinkific too. (Make sure it's a wildcard SSL so it works across all subdomains.)
- If you want your brand name to show on the certificate - Use a custom SSL certificate to have your company name show next to the padlock in the browser address bar.
How much does it cost?
Customer SSL certificates are included as a part of our Premier or Plus plans.
How do I get a custom SSL certificate?
First, make sure that you've already purchased the SSL certificate of your choice.
Once you're on the Advanced plan, you'll see the option to "Generate a Certificate Signing Request" under Advanced Settings SSL in your admin dashboard. The Certificate Signing Request (CSR) is what you need to send to your certificate provider to verify you as the owner of that domain.
Click this button and you'll be taken to a survey. Fill out the required details and submit. You'll then be emailed your CSR.
Contact your domain host to give them the CSR. They'll give you back a signed certificate - opt to have PEM format if possible.
Attach the signed certificate to a message for our support team, we'll then apply the certificate to your Thinkific site for you and send you an email once it's done.
What happens when my certificate expires?
We'll warn you 6 weeks before your certificate expires with a message in your dashboard and an email. You'll receive another reminder email 1 week before expiry.
You'll be able to head to Advanced Settings SSL in your admin dashboard to renew your certificate by generating a CSR as before.
If you don't update your certificate in time, your site will be switched back to using one of our basic auto-generated certificates. So your site will still be secure, but you won't have the benefits of the custom SSL as described above.
Once you've renewed your certificate, head to Advanced Settings SSL in your admin dashboard to generate your new CSR.
Or at this point, if you'd like to stop using a custom SSL certificate, then please let us know.
How do I remove my custom certificate?
If at any point you need to remove your custom SSL certificate from your Thinkific site, get in touch with the team here.
Your site will then go back to using one of our basic auto-generated certificates.