| Add to Favorites | Print this Article |
How do I install an SSL certificate that I have purchased for my domain?
Please Note: A Dedicated (static) IP Address is required for the installation of a purchased SSL Certificate (e.g. in order to use https://www.yourdomain.com). If you currently have a shared IP Hosting Plan with M2Technology, you may upgrade to a Dedicated IP Hosting Plan from within your Client Portal Account at any time. If you require further assistance please submit a support ticket.
Step 1: Generate A CSR
First, access the SSL menu by clicking on the "Advanced Tools" link from the main control panel menu, then click the "Install SSL Certificates" icon.
Make sure to click the radio button next to "Create A Certificate Request." Then, enter the information about your company. The "Common Name" refers to the address/domain of your website that will go on the SSL certificate. Your site will be secure only at this address. In the above example, https://www.mydomain.com/anything would be secure, but not https://mydomain.com/anything (notice the "www." before the domain name).
When you are finished, click the "Save" button at the bottom of the screen. You will then see a page that looks like this:
Copy this text (including the "BEGIN/END CERTIFICATE REQUEST" sections) into a plain text editor such as Windows Notepad and save the file to your hard drive. You will need this CSR when you purchase the SSL certificate.
Step 2: Purchase An SSL Certificate
When purchasing a certificate, you will be asked about yourself or your company, your web site, and:
- The CSR
- The software that generated the CSR
- Your common name (e.g. the address/domain of your website)
The CSR
Simply paste the CSR given to you by the control panel, including the "BEGIN/END CERTIFICATE REQUEST" sections. There will be a text box in the order form to paste to. Please ensure the CSR is saved and pasted as plain text.
Software that Generated the CSR (*if asked for)
Choose Apache-ModSSL, or "Other" if you don't see Apache-ModSSL in the list. Do not worry about making a mistake, as this information is collected for statistics purposes only.
Your Common Name
The "Common Name" refers to the address/domain of your website that will go on the SSL certificate (see Step 1 above). Enter this address without the "http://" unless otherwise specified by the certificate seller.
Step 3: Install the SSL Certificate
Access the SSL menu by clicking on the "Advanced Tools" link from the main control panel menu, then click the "Install SSL Certificates" icon.
Select the radio button next to "Paste a pre-generated certificate and key." As you can see, the RSA Private Key is already inserted in the text box for you (Be Sure NOT to delete this - Keep Secure for your records). Paste the certificate immediately below it and click "Save." At this point your new SSL Certificate is installed and will be ready to utilize. You may have to refresh your browsers' cache to have it recognize the new certificate.
*If required: Depending on the type of SSL Certificate you have purchased, you may also need to follow the next step. However, most users will have fullfilled the main requirements for SSL certificate installation by Step 3.
Step 4: Install the CA Root Certificate (*Only if required)
Return to the main SSL menu. At the very bottom is a link called "Click Here to paste a CA Root Certificate." Click the link and paste your CA Root Certificate in the textbox. Then, click the "Save" button.
*Important: Remember To Check the "Use a CA Cert." Box
Although the installation of a CA Root Certificate is not always required, you may find that your SSL certificate will not function properly without completion of this step.
Uploading Files to your Secure Site
All secure files need to be uploaded to your "/domains/yourdomain.com/private_html" directory in order to be served over an HTTPS connection. You may upload your files using the Control Panel's built-in file manager or through an FTP client of your choice.
You also have the option within the Control Panel to disable the separate "private_html" directory so that both HTTP and HTTPS requests are served from only your "public_html" directory. While this feature is generally not standard in a Unix/FreeBSD environment - it does reduce the overhead for duplicating files in two separate directories (e.g. in placing files in both private_html and public_html directories for both HTTP and HTTPS requests). If you have configured your account in this fashion, simply upload your files to the standard "public_html" directory.
How do I disable the private_html directory in order to only use the public_html directory?
For Further Assistance:
Please submit a support ticket through the Client Portal if you require further assistance or experience any issues.