The following instructions will guide you through the SSL installation process on cPanel (Paper-Lantern Theme Modern).
Make sure you have all the following files saved before proceeding:
Note: You may encounter error message "Your connection is not private" or something similar when attempting to visit your cPanel login page. This is caused due to your login page using a self-signed certificate by default. Please disregard this and proceed past the error message.
Note: Older versions such as X3 Theme-Classic may not look like the image above, but should still contain the same concept and category structure.
Note 1: cPanel should automatically fetch the Certificate (CRT) text if you previously uploaded the server certificate in the “Generate, view, upload or delete SSL certificate” section of your SSL/TLS Manager and selected the correct domain name above in the drop down.
Note 2: If you received the certificate in a ZIP file, click “Extract All” and then drag your server certificate into a text editor such as Notepad. This will allow you to copy all text contents needed including “-----BEGIN CERTIFICATE-----“ and “END CERTIFICATE-----“.
Note 1: cPanel should automatically fetch the Private Key (Key) text if you previously created the Certificate Signing Request (CSR) in the “Generate, view, or delete SSL certificate signing requests” section of your SSL/TLS Manager and selected the correct domain name above in the dropdown.
Note 2: If you made the CSR and private key outside of your cPanel account and failed to save the files, you will have problems proceeding and may need to re-issue the SSL certificate with a newly created key pair.
Note 1: cPanel should automatically fetch the CA Bundle from a public repository.
Note 2: If you have multiple intermediate certificates, paste each of them one after another to create the correct certificate chain/path.
Note 1: You are not required to "Enable SNI for Mail Services." Server Name Indication (SNI) should only be used if multiple hostnames are being served over HTTPS from the same IP address.
Note 2: You or your web host may need to restart the Apache server before the certificate will work.
Congratulations! You’ve successfully installed your SSL certificate! To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly. Remember, you may need to restart your server for changes to take effect.
If the intermediate certificates did not successfully install and configure themselves accordingly using the instructions above, please reference the instructions below on how to manually install them directly in Apache. If you do not have access to your Apache server, please contact your web host or system administrator for additional assistance.
Note: The location and name of this file can change from server to server depending on your configuration. Another popular name for the file is “SSL.conf”.
<VirtualHost 192.168.255.255:443> DocumentRoot /var/www/html2 ServerName www.yourdomain.com SSLEngine on SSLCertificateFile /path/to/your_domain_name.crt SSLCertificateKeyFile /path/to/your_private.key SSLCertificateChainFile /path/to/YourIntermediateCertificate.crt </VirtualHost>
Note: Make sure you type the correct file path and name where you plan on saving the intermediate certificates. You should save these certificates in the same directory that cPanel has your server certificate and private key stored.