If you’d like to use the Let’s Encrypt SSL certificate that comes pre-enabled on your account, you do not need to proceed with these installation instructions. If you believe your Let’s Encrypt SSL certificate is not installed properly, or functioning as it should, read this article.
If you a Business Pro customer, you received a Globalsign Wildcard SSL certificate from HostPapa included with your hosting package. For instructions on how to activate the Wildcard SSL certificate, click here.
If you have purchased an SSL certificate from a third party certificate authority or provider, follow the below instructions to install it on your account.
After the certificate has been issued, and sent to you by the certificate authority, you can proceed with deploying the certificate on your server.
How to install a third party SSL certificate on your website:
- Log in to your cPanel account
- Locate and click on SSL/TLS Manager in the Security section
- Click on Manage SSL Sites under Install and the Manage SSL for your site (HTTPS) menu
- Copy the certificate code you received from the Certificate Authority including —–BEGIN CERTIFICATE—– and —–END CERTIFICATE—– and paste it into the ‘Certificate: (CRT)’ field on the next page. The certificate files can be opened with the help of text editor on your computer.
- Click on the Autofill by Certificate button, which appears next to the certificate entered, and the system will attempt to fetch the domain name and the private key. You may also choose the domain from the drop-down list and manually enter the certificate and private key into the corresponding boxes. If the system fails to fetch the private key, you can locate it in the Private Keys (KEY) section of the SSL/TLS Manager. Please remember to include Begin/End headers and footers for the certificate and the key.
- Copy and paste the chain of intermediate certificates into the box under Certificate Authority Bundle (CABUNDLE)
If you want to use this certificate for Mail Services (Exim and Dovecot), tick the checkbox ‘Enable SNI for Mail Services’. In this case, you will be able to use your domain, on which SSL certificate has been installed, as a hostname of the mailserver configuring your mail clients to work via secured ports.
Note: This option is available only starting from cPanel 11.48. If you have older version of cPanel, you cannot use your certificate for mail.
- Click on the Install Certificate button
Congratulations! The certificate is now installed on the server for your site. The site should now be accessible via https://. You can check the installation using this tool.