How do I install an SSL certificate?
To be able to use an SSL certificate, you may need to have a (dedicated) IP address. If this is necessary, you will receive an error notification when you try to gain access to the SSL menu. When you do not see the heading SSL Certificates in your DirectAdmin environment, please consult this page.
A unique IP address is no longer required! Click here for more information and check whether a dedicated IP address is also required for your package to be able to install a certificate.
Click here for more information about requesting a dedicated IP address.
Installing a Certificate
A purchased certificate is the best form of security. Because the certificate is both secure and trusted, visitors will not receive warning pop-ups when they view a secured page.
Step 1: Produce a CSR
First, connect to the SSL menu by clicking "Advanced Features" from the main menu, then click "SSL Certificates".
Select the box next to "Create A Certificate Request". Then, enter the details about your company. The "Common Name" refers to the address of your website that goes to the SSL certificate. Your site will only be secure at this address. In the above-mentioned example, https:/www.regtr.com/anything and https:/www.regtr.com/anything would be secure. When you were to provide only "regtr-ssl.uk" under common name, only https:/www.regtr.com/anything will be secure and https:/www.regtr.comk/anything will not. Make sure you choose Keysize 4096 to create the csr.
When you're done, click "Save" at the bottom of the screen. The following screen will launch:
copy this text (including the "BEGIN/END CERTIFICATE REQUEST" sections) to a plain text editor such as Windows Notepad and save the file. You will need this CSR when you purchase a certificate.
Step 2: Purchase a Certificate
When you purchase a certificate, you will be asked for your details, your company details, but also:
- the CSR
- the software that produced the CSR
- the 'common name'
Simply paste the CSR you have been provided with by the control panel, including "BEGIN/END CERTIFICATE REQUEST" sections. The text to be pasted will be enclosed in a text box. Check whether the CSR has been saved and copies as plain text.
Software that produced the CSR
Choose Apache-ModSSL or "Other" if you don't see Apache-ModSSL in the list. Don't worry about making a mistake here, this is only used for statistical purposes.
Your Common Name
The "Common Name" refers to the address of your site which will go to the SSL certificate (see Step 1). Enter this address without "https://" unless specified otherwise.
Step 3: Install the Certificate.
First, connect to the SSL menu by clicking "Advanced Features" from the main menu, then click "SSL Certificates". In this field, place the contents under "RSA PRIVATE KEY" of "www_domein_uk.cert".
Tick the box next to "Paste a pre-generated certificate and key". As you can see, the key has already been placed in the text box. Copy the certificate directly below and click "Save".
Step 4: Install the CA Root Certificate
Go back to the SSL Menu. At the bottom left of the screen you will find a link called "Click Here to paste a CA Root Certificate". Click it and copy your CA Root Certificate into the textbox. Then click "Save".
Important: Please remember to tick the "Use a CA Cert." box.
Although the installation of a CA Root Certificate isn't always required, it may be that your SSL certificate won't operation properly without completing this step.