You can install an SSL certificate from a third-party provider on your Crystal Host account. There are two ways to do this:
- You can purchase a brand-new SSL certificate. To do this, you must first generate a private key and Certificate Signing Request (CSR) in cPanel. You submit the CSR to the third-party provider, who then generates an SSL certificate and sends it to you.
- If you have already purchased an SSL certificate from another provider for your domain, you can install it in cPanel. To do this, you must have the private key and SSL certificate. Some SSL certificates require a Certificate Authority (CA) bundle as well. (The CA bundle may also be called an Intermediate Certificate.
If you have not already purchased an SSL certificate from another provider, you must first generate a private key and Certificate Signing Request (CSR).
To generate a private key and CSR, follow this steps:Log in to cPanel.
- In the Security section of the cPanel home screen, click SSL/TLS Manager.
- Under Private Keys (KEY), click Generate, view, upload, or delete your private keys. The Private Keys page appears.
- Under Generate a New Private Key, confirm that the Key Size is set to 2,048 bits.
- In the Description text box, type a descriptive name for the key, such as SSL cert private key.
- Click . cPanel generates and displays the private key. You are now ready to generate a Certificate Signing Request (CSR).
- Click Return to SSL Manager.
- Under Certificate Signing Requests (CSR), click Generate, view, or delete SSL certificate signing requests. The SSL Certificate Signing Request page appears.
- Under Generate a New Certificate Signing Request (CSR), in the Key list box, select the description for the private key you generated in step 6.
- In the Domains text box, type the domain that you want to secure with the certificate.
- Complete the remaining fields for the CSR.
- To create the CSR, click . cPanel generates and displays the CSR,copy the CSR text and submit it to the third-party SSL provider. When you receive the SSL certificate from the provider, you are ready to enable SSL for your web site.
At this point, you should have a private key installed and a certificate from the third-party provider. (You may also optionally have a CA bundle.) If so, you are ready to install the certificate and activate SSL for your web site.
To do this, follow these steps:
- From the SSL/TLS Manager page, under Certificates (CRT), click Generate, view, upload, or delete SSL certificates. The Certificates page appears.
- Under Upload a New Certificate, upload the certificate using one of the following methods:
- Paste the certificate text in the Paste your certificate below text box, type a description in the Description text box, and then click .
- Alternatively, click Descriptiontext box, and then click . , select the .crt file on your computer, type a description in the
- Click Go Back, and then click Return to SSL Manager.
- Under Install and Manage SSL for your site (HTTPS), click Manage SSL sites.
- Under Install an SSL Website, click , select the certificate you want to use, and then click . cPanel fills in the Certificate (CRT) and Private Key (KEY) fields automatically.
- In the Domain list box, select the domain you want to secure with the certificate.
-
If your SSL certificate requires a CA (Certificate Authority) bundle, paste it under Certificate Authority Bundle (CABUNDLE). Otherwise, leave this field blank.
Not all SSL certificates require a CA bundle (which is also sometimes called an Intermediate Certificate). If you are unsure whether your certificate requires a CA bundle, contact the certificate provider. - Click SSL Host Successfully Installed message. . cPanel installs the certificate on the server and enables SSL. When the process is complete, you receive an
- Click . You can now securely access the specified domain by using the https:// prefix in a web browser.
If you need further assistance, please open a support ticket with us on the Customer Portal at Support Tickets