How to install SSL Certificate in cPanel?

Step 1: Generate a Private Key

  1. Login to cPanel.
  2. Click SSL/TLS Manager > Private Keys (KEY).
  3. Scroll down near the bottom of the page to the Generate a New Key section.
  4. Select the desired domain name from the pull-down menu, or type it into the Host field (e.g., www.domain.com).
  5. Select the key bit-length. We recommend 2048 (2048 is required for EV certificates).
  6. Click the Generate button to generate the new key.
  7. A new private key is generated and is stored on the server.

Step 2: Generate a Certificate Signing Request (CSR)

  1. Click SSL/TLS Manager > Certificate Signing Request (CSR).
  2. Using the CSR Legend on the right-hand side of this page, fill out the Generate a New Certificate Signing Request form.
  3. Click the Generate button to generate the new CSR.
  4. cPanel shows you the CSR in the top box under SSL Certificate Signing Request (don't worry about the contents of the box below it, you don't need it).
  5. Copy everything in the top box.
  6. Save a copy of your CSR. The CSR will be needed during the online order process. You'll be asked to copy-and-paste your CSR into a special CSR box. Below is an example of what your CSR will look like. This is a example only and cannot be used to generate your SSL certificate.

      -----BEGIN CERTIFICATE REQUEST----- MIIB3zCCAUgCAQAwgZ4xCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdHZW9yZ2lhMRAw DgYDVQQHEwdBdGxhbnRhMREwDwYDVQQKEwhHZW9DZXJ0czEaMBgGA1UECxMRSW5l cm5ldCBNYXJrZXRpbmcxGTAXBgNVBAMTEHd3dy5nZW9jZXJ0cy5jb20xITAfBgkq hkiG9w0BCQEWEmFkbWluQGdlb2NlcnRzLmNvbTCBnzANBgkqhkiG9w0BAQEFAAOB jQAwgYkCgYEA5KOi+RnRzBuBQeFYjrwZg1sfT7zr4L8j0Khuoj621x+lGBmFC76c kGclUIQBmuyp9T9NrNqAjGtEmgdFr6cWLJtgXgi+BaZDLX9BMYF49NuTggNoEUMX crQRAENHb2YthG2SEcF5p98RNcDPzWOA3a4AMvgkxDlDGYUhbcQhnt0CAwEAAaAA MA0GCSqGSIb3DQEBBAUAA4GBAIapt6Tw0BTYUwEAX0/oKvaaN/ghErR85jdW7xOD b1hL0yNfb495A7e/IQyBEP5a/v+QUOtibHS4geiPhH9etAI+DSQmctjbf6dMGJql gCXGwlsTbjPOSmNT+/X2Uvf1BlplwqAMDghEuFHsjshlypz1NEg94ri2K9N1VrBs
      +iAv
      -----END CERTIFICATE REQUEST-----

Step 3: Send this SSL to SSL creator such as Geotrust, Verisign, Comodo, etc. You will get .crt file from them.

Step 4: Download and copy your certificate files to your server

Download your SSL certificate and support files by clicking on the download link in your fulfillment email or from your GeoCerts SSL Manager account. Unzip the files and copy them into the directory where you will keep your certificates. Some files in the zip may or may not be used depending on your server type.
Install the SSL Server Certificate Files

  1. Login to cPanel
  2. Click SSL/TLS Manager > Certificates (CRT) > Generate, view, upload or delete SSL certificates
  3. In the Upload a New Certificate section click the Browse button and locate your SSL Server Certificate file your_domain_com.txt.
  4. Click the Upload button.
  5. Click the Go Back link to return to SSL/TLS Manager.

Step 5: Setup the Domain

  1. Click SSL/TLS Manager > Setup a SSL certificate to work with your site
  2. From the Domain drop down menu select the domain that will use the SSL Certificate. The system will attempt to Fetch the SSL Certificate and corresponding private key.
  3. Open GeoTrust_Intermediate.txt in Notepad or other simple text editor (not Word). Copy-and-paste all the contents of the GeoTrust_Intermediate.txt file into the Ca Bundle (CABUNDLE) box.
  4. Click on Install Certificate. You should receive a message that the certificate was successfully installed. If you receive an error you may need to contact your web hosting provider for additional support.

Step 6: Verify Installation

New To verify if your certificate is installed correctly, use the GeoTrust Certificate Installation Checker.

Test your SSL certificate by using a browser to connect to your server. Use the https protocol directive. For example, if your SSL was issued to secure.mysite.com, enter https://secure.mysite.com into your browser.

Your browser's padlock icon Browser padlock will be displayed in the locked position if your certificate is installed correctly and the server is properly configured for SSL.

Notes:

  1. Although you have add on domain, one hosting account can only use 1 SSL certificate. We recommend to use SSL certificate to your main domain
  2. You need 1 static IP address to use SSL certificate
  • 4 Users Found This Useful
Was this answer helpful?

Related Articles

100,000 inodes limit

An inode is a data structure used to keep information about a file on your hosting account. The...

CPU resource usage

SHARED SERVERS HostMop allows a maximum of 25% CPU usage limit. You may exceed this limit for...

How can I make a stronger password?

Password Selection It is important to have a password that is easy to remember, but hard to...

How can I prevent hacking?

The most important thing to do is keep your passwords a secret. If you must give a password to...

How to handle the Google Attack Page

When you see the dreaded Google attack site warning, you should immediately email...