Install SSL Certificate in cPanel – – Wingdings Translator Online

Hosting Mautic QuickStart -50% with support in Spanish
24 hours and free training

Send up to 1,000,000 emails/year. Mautic support in Spanish 24 hours, 365 days

Exchange data on the Internet using the HTTP protocol It is something common in our lives, doing it safely is another story and the word has a lot to do with that “Secure” that we add to the protocol so that it is HTTPS.

Encrypting information so that it travels more securely is increasingly important and necessary; for this you must know how Install an SSL Certificate in cPanelyour hosting panel, so that your e-commerce store or your professional or company website communicate with greater privacy on the Internet.

The most common question in these cases is usually Do I really need an SSL Certificate?. Tell you that by default the payment gateways used in most shopping carts, be it PrestaShop, WooCommerce, VirtueMart, etc., carry out secure transactions within the gateway and not on your website.

Do I need an SSL Certificate for my Store or website?

Some time ago I would have answered that it is not necessary, but things have changed a lot in recent years and Google (that GH that knows everything) says that you have to work with SSL so that data transactions between users and websites are more safe.

Does this mean that it is not necessary to have an SSL Certificate? Naturally it does not mean that you should do without it, and if you also take into account that giants like Google value sites that use HTTPS more, the question almost answers itself .

If you collect data on your website from clients, their credit cards or sensitive data and you operate in Spanish territory, or you sell to this market, you must comply with the LOPD and LSSI that encompass issues such as electronic commerce, sale of services online, online contracting, information and advertising and intermediation services.

To install an SSL Certificate for a store with WooCommerce (WordPress), PrestaShop or VirtueMart (Joomla), it is not necessary to have a Fixed IP for its installation and use.

How do I install it?

Assuming that you have already purchased the SSL Certificate or do you use a certificate Let’s Encrypt (free) for example, and that you have downloaded it to your computer, let’s see in summary how it is to install an SSL Certificate in the cPanel Hosting Panel.

Summarized process of installing an SSL Certificate in cPanel:

Download and unzip the purchased SSL Certificate on your computer.
Access your Hosting panel (cPanel).
Go to the section Security, SSL/TLS.
Select the domain to associate the SSL Certificate with.
Fill in the empty blocks with:

Certificate: (CRT).
Private key: (KEY).
Certificate Authority Package: (CABUNDLE).

Click the Install Certificate button below.
Check that the fields validate and do not return a Certificate error.

You already have the SSL Certificate, (free or paid) and you have most likely downloaded it to your computer in .zip format. You need to unzip that packaged file so that you can then upload the files, or edit them, to fill in the certificate fields in your hosting panel.

Now access your hosting panel, in this case based on cPanel, and go to the section Security and click the option SSL/TLS.

Once inside this section you have to select the option Install and manage SSL for your site (HTTPS) to be able to add the Certificate that you are going to use on your website.

The dance begins here… ヅ

Now it’s time to install the SSL Certificate in your Hosting associating it with the desired domain.

It is worth paying attention to the following notice first, since it usually generates many queries in the Support Departments, since it mentions the need to have a Fixed IP (dedicated).

Browsers that support SNI:

Internet Explorer 7 or higher versions (Windows Vista or higher).
Mozilla Firefox 2.0 or higher versions.
Google Chrome 6.0 and higher versions.
Safari 3.0 or higher versions.
Mobile Safari on iOS 4.0 or higher versions.
Android browser 3.x or higher versions.
Windows Phone 7
Opera 8.0 or higher versions.
Opera Mobile 10.1 or higher versions.
Konqueror 4.7 or higher versions.

If the browser from which a website with HTTPS is accessed does not support SNI, a warning will be visible. certificate errorthat the user can accept and access the secure site.

Note: It does not have a dedicated IP address. Therefore, web browsers that do not support Server Name Indication are likely to give users false security warnings when accessing any of the SSL websites. Microsoft® Internet Explorer™ on Windows XP™ is the most widely used web browser that does not support SNI.

You will see a button called Review which is especially important because it will allow you to see a List of SSL certificates that you already have available for your domain.

In this list you will see:

Domains associated with the SSL Certificate.
Certificate Issuing Entity.
Expiration date of the Certificate.
Description of the Certificate.

If you click “Use the Certificate” The fields of the Certificate will be automatically filled in, which you must review before clicking on Install Certificate.

View of the Automatically filled Certificate (data obfuscated for security).

However, this is not the process that I want to explain to you, but it is important that you know that this option exists and that you can apply it if you already have the Certificate installed in your Hosting, possibly if you previously requested it from your Support Department.

Clarified these two points, let’s continue…

Sections that you must configure:

Domain: The one we have available or foreseen for this Certificate.
IP Address: By automatic assignment, that of the server where your website is hosted.
Certificate (CRT)
Private key (KEY)
Certification Authority Package (CABUNDLE)

You obtain these data from the Certificate files that you have downloaded and extracted to your computer.

Let’s look at each of these fields in detail…

Domain

It will be the domain to which the SSL Certificate will be associated, especially if you have several active domains in your Hosting.

Note: Be careful not to mistakenly associate temporary domains (temporary url) to the SSL Certificate.

You will notice that the side of the select domain there is a button that says Autofill by domain and that if the SSL Certificate is already on the available server, or was previously installed, you will be able to fill in the following fields for this Certificate automatically.

If there are none yet available, which will probably be the case if this is your first time with an SSL Certificate, you will see a notice that there are no certificates available.

No certificate for the domain .cc could be found.

I already had this planned because this article tries to explain precisely how to install it manually, which gives more work, but also more satisfaction later 🙂

IP adress

By automatic assignment, that of the server where your website is hosted.

Certificate (CRT)

You must open the file filename_cc.crt of those you have on your computer downloaded.

Open it with a plain text editor (Notepad, etc.) so that you don’t add formatting code to the text by mistake. And once opened copy the content.

Now paste it in the box Certificate (CRT) from your hosting panel (cPanel).

All certificates start with a header similar to this:

—–BEGIN CERTIFICATE—–

Check that it starts with 5 hyphens —– and that it does not contain any characters or spaces before or after the start or end of the code. This code start and code end must also be copied and included in the field Certificate (CRT).

Let’s go for the KEY…

Private key (KEY)

In this case the process is simpler and simply by clicking on the button Autofill by certificate.

Clicking the field Private key (KEY) It should fill in automatically.

If the private key (KEY) was not on the server, then you will have to edit the .key file that you downloaded to your computer and copy the data from that key and paste it into the field Private key (KEY) manually.

Certification Authority Package (CABUNDLE)

The same will happen with the field Private key (KEY)if the certificate was on the server, the data for CABUNDLE will have been automatically recovered and no action will be necessary, seeing directly the data already filled in the corresponding box, in your hosting panel (cPanel).

Make sure you have the option checkbox enabled Enable SNI for mail services.

And finally, in the installation phase of the SSL Certificate, you will have to click on the button install certificate to complete the process and let the magic happen.

You will see the notice shortly Installing…

And after a few seconds the result of the installation process of the SSL certificate in your cPanel.

Now the Certificate page will show the data of the installed SSL Certificate.

After the correct installation of the SSL Certificate and its corresponding activation, it is not necessary to wait for the propagation process for it to be accessible, since it is not needed, once activated it is already available for use.

From online services such as you can verify if your site is working properly with SSL enabled.

Do not forget that now, depending on the CMS you use, WordPress, PrestaSHop, Joomla, etc., you will have to enable HTTPS for everything to work correctly on your website.