For instructions on setting up a free LetsEncrypt SSL certificate in your Web Hosting Powered by Plesk please read How do I install free LetsEncrypt SSL certificates in my plesk Web Hosting website?
This article covers the steps involved with purchasing and installing the SSL certificate in your Personal/Startup/Business Hosting, Managed WordPress Hosting or VPS packages.
If your web hosting is not with Internic, you can go directly to How to generate SSL certificate?
|Please note: All Plesk FAQs are displayed using the "Active List" view. There are three different view types to choose from in your control panel: Active List, Dynamic List and Classic List. If you would like to change the view type please click the wrench icon on the top right of your control panel and select your preferred view type.
- How to purchase SSL certificate?
- How to generate CSR?
- How to generate SSL certificate?
- How to install SSL certificate?
- How to redirect a site from http to https?
How to purchase SSL certificate?
To purchase an SSL certificate for your domain name please follow these steps.
Login to your Internic account, click the Products drop-down menu at the top of the page and select SSL under the Security tab.
You will find the SSL certificates available, as well as a brief overview. You can click Compare Plans beneath each certificate for more information about our certificates and to view a comparison chart for all certificates.
Once you have decided which SSL certificate you would like to purchase for your domain name, click Get Secured.
On this page you will be able to modify your SSL certificate. Configure your SSL application to what suits you best. Once you have completed this step click Proceed to Checkout.
You will be taken to your shopping cart where you can verify your order details, check the box next to I agree to the Terms and Conditions and finally click Process Order to begin the transaction.
You will need to generate your Certificate Signing Request (CSR) and determine your approval email. If you are third-party hosted you must contact your hosting service provider and request that they provide you with the CSR for our domain’s website.
If you are hosted with Internic you can obtain the CSR through the Hosting OS or you can check instructions on How to generate CSR? It is important to copy the entire CSR text, including the -----BEGIN/END CERTIFICATE REQUEST-----.
Below you will find important information to consider before you begin the process of purchasing an SSL certificate for your domain:
- To ensure that your SSL certificate is valid for both www.yourdomain.tld as well as yourdomain.tld, you must have your hosting provider generate the CSR with the common name www.yourdomain.tld
- The Wildcard SSL option allows you to secure the main domain as well as sub-domains, such as blog.domain, mobile.domain, etc. If you selected the Wildcard option, the CSR should be generated with *.yourdomain.tld
- For the Alpha and Domain level SSL certificates it will be necessary to choose a valid, accessible approver email from a pre-defined list. For more detail, please visit our support article: Which email addresses can I use for SSL validation?
How to generate CSR?
|What you'll need to get started:
|A Hosting package with your domain attached
|An email address from the approved list of addresses to receive the SSL approver email.
|You can simply create/delete the email in your hosting package as needed
To start the process you'll need to create the Certificate Signing Request (CSR) in your Hosting Package.
Log into your Hosting package through your Hosting Manager, scroll to the domain you wish to add an SSL Certificate for, and click SSL/TLS Certificates.
You'll see a list of the certificates you already have, if any, and an option to upload an existing certificate. Here we're just going to start with a new certificate request. Click Add SSL/TLS Certificate.
Add the domain name for the certificate you want to install, and fill in all necessary fields with your organization's information.
The required fields are marked with an asterisk *
|If you're creating a certificate for your root domain, such as internicexample.com, you should always create your certificate request for the www. version of your domain: www.internicexample.com. This will ensure both the www and the root domain are secured with the SSL, and can avoid some conflicts later.
If you do not have a company name, you can use your first and last name.
Once the form is filled out, click Request.
You'll be returned to the SSL screen and you should see your certificate populated in your list.
Click on the domain name/certificate request to view the properties, and scroll down to the CSR. It should look like this:
Copy all of that text, including the parts that read -----BEGIN/END CERTIFICATE REQUEST-----
You will use that CSR to generate your SSL Certificate.
Login to your Internic account and select SSL Manager.
Click on the red pencil icon and click Complete Your SSL.
Paste the CSR text, including the -----BEGIN/END CERTIFICATE REQUEST----- portion, into the box labelled Certificate Signing Request. Click the Validate button, and then click Next.
Enter your contact details, including an approver email address (please note that Organization and Extended SSL certificates don’t actually use approver emails, but you must select one anyway), and click Submit Application.
If you have purchased an Alpha or Domain SSL, confirm the SSL application via the approver email. If you have purchased an Organization or Extended SSL, you will be subject to some additional vetting by our SSL provider, Globalsign.
As soon as the vetting is complete, the SSL certificate will be Active and you will be able to download your certificate in the SSL Manager, hover over the Download SSL arrow, and click on Certificate. The certificate download will include several files. In most cases, the file you need is called X509.cert and INTER.cert.
How to install SSL certificate?
Here are the steps for installing your SSL certificate while hosted at Internic: If you have purchased an SSL for your domain through Internic, you will have an SSL certificate listed in your SSL Manager.
Your downloaded certificate includes several files, and the two in particular we'll need are the ones labelled X509.cert and INTER.cert
To do so, navigate back to your SSL/TLS Certificate section in your Hosting package.
You should see your (incomplete) SSL certificate listed. Click on the certificate/domain name to return to the page where you copied the CSR in the above steps.
Scroll down to the section that reads Upload the Certificate Files.
Beside Certificate (*.crt) you should click Choose File and select your X509.cert file
Beside CA certificate (*-ca.crt) you should click Choose File and select your INTER.cert file
Then click Upload Certificate.
How to redirect a site from http to https?
Once the files are uploaded you will need to apply that certificate to your domain.
Go back to the main page of your Hosting package and navigate to the Hosting Settings:
In the Hosting Settings locate the Security section
Put a check beside SSL/TLS support and a check beside Permanent SEO-safe 301 redirect from HTTP to HTTPS and in the drop down beside Certificate select your new certificate.
|Note: It may take some time for some web browsers to pick up the new redirect rule.
Click here to see how to change your Plesk Views: