Title: Install a custom TLS certificate
Author: WordPress VIP Documentation
Published: February 1, 2021
Last modified: June 11, 2025

---

 1. [TLS](https://docs.wpvip.com/tls/)
 2. Install a custom TLS certificate

#  Install a custom TLS certificate

TLS certificates from [Let’s Encrypt](https://docs.wpvip.com/lets-encrypt-cert/)
are available for domains on the VIP Platform by default, but customers can choose
to provision custom TLS certificates from other certificate authorities instead.

All custom TLS certificates require a Certificate Signing Request (CSR). [A CSR can be generated by VIP](https://docs.wpvip.com/custom-tls-cert/custom-tls-vip-csr/)
or by [the certificate authority generating the custom TLS certificates](https://docs.wpvip.com/custom-tls-cert/custom-tls-non-vip-csr/).

 * 
   ### 󠀁[Custom TLS certificates with a VIP CSR](https://docs.wpvip.com/tls/custom-cert/custom-tls-vip-csr/)󠁿
   
 * A certificate signing request (CSR) from VIP can be generated in order to obtain
   a custom certificate from a Certificate Authority (CA).
 * 
   ### 󠀁[Custom TLS certificates with a non-VIP CSR](https://docs.wpvip.com/tls/custom-cert/custom-tls-non-vip-csr/)󠁿
   
 * To install a custom TLS certificate for a domain with a CSR that was not generated
   by VIP, customers must have in their possession a complete certificate chain 
   generated by a Certificate Authority (CA).
 * 
   ### 󠀁[Switch from a custom TLS certificate to a Let’s Encrypt certificate](https://docs.wpvip.com/tls/custom-cert/switch-to-lets-encrypt/)󠁿
   
 * After a custom TLS certificate has been provisioned, it is possible to switch
   to a Let’s Encrypt TLS certificate at any time.
 * 
   ### 󠀁[Custom TLS certificate requirements](https://docs.wpvip.com/tls/custom-cert/requirements/)󠁿
   
 * A custom TLS certificate that is generated by the customer must meet meet a specific
   set of requirements in order to be successfully installed.
 * 
   ### 󠀁[Renew a custom TLS certificate](https://docs.wpvip.com/tls/custom-cert/renew/)󠁿
   
 * Custom TLS certificates that are installed for a domain should be renewed by 
   the customer prior to their expiration date.

Last updated: June 11, 2025