For cPanel versions 11.25/26
The SSL and TLS features are intended to make your website more secure. These features generate and manage SSL certificates, signing requests, and keys. This is useful for websites that will use logins and credit card numbers, since information will be sent to and from your website over the Internet as encrypted data versus plain text. This makes it difficult for malicious users to intercept communications between visitors and your website.
To begin, select a link underneath 1 of the 3 headings:
- Private Keys (KEY)
- Certificate Signing Requests (CSR)
- Certificates (CRT)
These links provide access points that generate, view, or delete keys, requests, and certificates.
Adding a private key is the first step in setting up an SSL certificate for your site. It is highly recommended that SSL certificates be used if your visitors will be submitting sensitive information to your website.
Add a Private Key
A new key can be added manually or uploaded using a
Upload an Existing Key
To upload a key, begin under the Upload a New Key
- Enter your domain name in the Domain the Key is for field.
- Paste a key below or click the Choose File button to upload a
Click the Install
button to properly install the private key to the server.
Generate a New Key
If an entirely new key is needed:
- Select the desired domain name from the pull-down menu, or type it into the Host field.
- Click the Generate button to generate the new key.
The key will automatically be installed on the server and will appear in the list under the Keys on Server
heading once it has been generated.
Add a Certificate Signing Request (CSR)
The signing request form is required for obtaining a certificate from an SSL provider. The SSL provider may require information in a specific way. If this is true for your SSL provider, take the steps to make sure the information is presented in the required way.
To generate a CSR:
- Select the host from the Host pull-down menu.
- Fill in the rest of the appropriate information in the fields below the menu.
- Click the Generate button.
You must have a key prior to generating a signing request.
Add a Certificate
When installing a trusted certificate obtained through an SSL provider, use the features beneath the Upload a New Certificate
Upload an Existing Certificate
To upload the certificate:
- Paste the certificate into the text box, or upload a
*.crt file using the Choose File button.
- Click the Upload button to install the certificate onto the server.
Generate a New Certificate
If the SSL certificate is self-signed, it can be generated under Generate a New Certificate
- Select the host from the pull-down menu.
- Key-in the remaining information.
- Click Generate.
When the certificate is generated and self-signed, it will automatically be installed on the server.
Self-signed certificates are generally reserved for intranet uses. To use a certificate on the Internet, you should use a third-party service. Consult your favorite search engine to shop for SSL providers.