StarDomain

How to Install an SSL Certificate in cPanel

How to Install an SSL Certificate in cPanel

Securing your website with an SSL certificate is essential for protecting visitor data, improving SEO rankings, and building trust. This guide walks you through installing an SSL certificate in cPanel, whether you have purchased a certificate from {{COMPANY_NAME}} or a third-party provider.

Prerequisites

Before you begin the installation process, make sure you have:

  1. Access to cPanel for your hosting account
  2. A valid SSL certificate (the .crt file or certificate text)
  3. The private key (.key file) that was generated when you created the CSR
  4. The CA bundle (intermediate certificate) from your certificate authority
  5. A dedicated IP address (required for some older configurations, though SNI support on modern servers often eliminates this requirement)

Tip: If you have not yet generated a Certificate Signing Request (CSR), you will need to do that first. See the CSR generation section below.

Step 1: Generate a CSR (If You Have Not Already)

If you have already received your SSL certificate, skip to Step 2.

  1. Log in to your cPanel account
  2. Navigate to the Security section
  3. Click on SSL/TLS
  4. Under "Certificate Signing Requests (CSR)", click Generate, view, or delete SSL certificate signing requests
  5. Fill in the required fields:

- Key Size: Select 2048-bit (minimum recommended)

- Domains: Enter your domain name (e.g., example.com)

- City, State, Country: Your business location details

- Company: Your organization name

- Email: Your contact email address

  1. Click Generate
  2. Copy the generated CSR text (including the BEGIN and END lines) and submit it to your certificate authority

Important: The private key is automatically stored in cPanel. Do not delete it, as you will need it for installation.

Step 2: Install the SSL Certificate

Once you have received your SSL certificate from the certificate authority:

  1. Log in to cPanel
  2. Go to Security > SSL/TLS
  3. Click on Manage SSL sites (under "Install and Manage SSL for your site")
  4. Select the domain from the dropdown menu
  5. In the Certificate (CRT) field, paste your SSL certificate text
  6. The Private Key should auto-fill if the CSR was generated in cPanel. If not, paste it manually
  7. In the Certificate Authority Bundle (CA Bundle) field, paste the intermediate certificate
  8. Click Install Certificate

You should see a success message confirming the SSL certificate has been installed.

Step 3: Verify the Installation

After installation, verify that your SSL certificate is working correctly:

  1. Open your website using https:// in your browser
  2. Click the padlock icon in the address bar to view certificate details
  3. Verify the certificate shows the correct domain name and expiration date
  4. Use an online SSL checker tool to confirm there are no chain issues

Step 4: Force HTTPS Redirect

To ensure all visitors use the secure version of your site:

  1. In cPanel, go to Domains > Domains (or Redirects)
  2. Look for the Force HTTPS Redirect toggle and enable it
  3. Alternatively, add the following to your .htaccess file:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Troubleshooting Common Issues

Mixed Content Warnings

If your browser shows a warning despite having SSL installed, your site may be loading some resources over HTTP. To fix this:

  • Update internal links to use https:// or use protocol-relative URLs
  • Check for hardcoded http:// URLs in your theme, plugins, or database
  • Use your CMS settings to update the site URL to https://

Certificate Chain Errors

If visitors see "certificate not trusted" errors:

  • Ensure you have installed the CA Bundle (intermediate certificate)
  • Verify the certificate chain order is correct
  • Re-download the CA bundle from your certificate provider

Private Key Mismatch

If cPanel reports a key mismatch:

  • The private key must match the CSR used to obtain the certificate
  • Generate a new CSR and reissue the certificate if the original key was lost

Certificate Expiration

SSL certificates have a limited validity period (typically 1 year). Set a reminder to renew before expiration to avoid security warnings for your visitors.

Related Articles

  • AutoSSL in cPanel: How It Works
  • Understanding SSL Certificate Types
  • Troubleshooting SSL Certificate Errors

If you need assistance installing your SSL certificate, contact our support team at {{SUPPORT_EMAIL}} or open a ticket at {{SUPPORT_URL}}. Our technical team is available to help you secure your website.

Need Help?
New TicketTrack TicketKnowledge BaseContact Us