Install SSL Certificates On WHM/cPanel Server

Hosting, Server

Prior ordering your Certificate you need to create a Certificate Signing Request (CSR)

1. Login on your cpanel

2. Go to “SECURITY” section and click on “SSL/TLS”:


3. Go to “Certificates (CRT)” and click on “Generate, view, upload, or delete SSL certificates”

4. Go to the section “Choose a certificate file (*.crt)”:


5. Choose your file to upload.
You will receive more than 1 file, choose the one with your domain name.
Give a description, ie the domain name.

6. Once uploaded, return to SSL Manager (link at the bottom of the screen).

7. Go to “Install and Manage SSL for your site (HTTPS)” and click on “Manage SSL sites”

8. Go to section “Install an SSL Website”:


9. And Select the domain for which you have prepared all previous steps.

10. Click on “Autofill by domain” that should auto-complet all fields.

11. The “Certificate Authority Bundle: (CABUNDLE)” will remain empty. Please open the “USERTrustRSADomainValidationSecureServerCA.crt” and copy/paste the content.

12. Click on “Install Certificate”.

13. If successful, you will have a success message:


14. You should now be able to browse your website by using HTTPS://
Most likely your browser will tell you:


15. You now need to change your website to use HTTPS sources when it needs to load external JS or Fonts.

16. We also need to create/modify the .htaccess file to redirect all traffic to HTTPS if it is non WordPress website

Update WordPress to use HTTPS

1. Login in your Dashboard

2. Go to Settings -> General

3. Change both “WordPress Address (URL)“ and “Site Address (URL)” to HTTPS

4. Save Changes.

5. Install a plugin called “Go Live Update URLS” where you can update your database to use HTTPS. (Backup your database before!!)

6. Check your Website if you still have that shield with the red cross:

7. If it still has, you need to open the Developer Tools (Ctrl+Shift+I or F12) switch to “Console” and reload the page, it will tell you what is not right.
It is often some links in your widgets, or in the customization of your theme.

Create/Update your .htaccess file for non-WordPress websites

Update your htaccess file with the following content:

RewriteEngine On

RewriteCond %{HTTP_HOST} !^www\.

RewriteRule (.*) https://www.%{HTTP_HOST}%{REQUEST_URI} [R,L]

RewriteCond %{HTTPS} off

RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R,L]

Leave a Comment