An SSL/TLS certificate encrypts the connection between your website and your visitors' browsers. This protects sensitive data (passwords, personal information, payment details) from being intercepted. Websites with SSL display a padlock icon and use https:// in the address bar.
Please note: Screens and options may vary slightly depending on your cPanel version and hosting plan.
Why SSL Matters
- Security — Encrypts data in transit, preventing eavesdropping and man-in-the-middle attacks.
- Trust — Browsers mark sites without SSL as "Not Secure," which deters visitors.
- SEO — Search engines rank HTTPS websites higher than HTTP sites.
- Compliance — Many regulations (GDPR, PCI-DSS) require encrypted connections for handling personal or financial data.
Types of SSL Certificate
- Domain Validated (DV) — Verifies domain ownership only. Quickest to obtain, suitable for most websites. Let's Encrypt provides free DV certificates.
- Organisation Validated (OV) — Verifies domain ownership and organisation identity. Provides higher trust.
- Extended Validation (EV) — The most rigorous validation. Used by banks and large e-commerce sites.
Viewing Installed Certificates
- Log in to your cPanel account.
- In the Security section, click SSL/TLS.
- Click Manage SSL sites to see which certificates are installed on which domains.
Installing a Certificate Manually
If you have a certificate from a commercial Certificate Authority:
- Go to SSL/TLS > Manage SSL sites.
- Select the domain.
- Paste the Certificate (CRT), Private Key, and CA Bundle into the respective fields.
- Click Install Certificate.
AutoSSL
Most cPanel servers have AutoSSL enabled, which automatically installs and renews free DV certificates (typically from cPanel/Sectigo or Let's Encrypt) for all domains on your account. If AutoSSL is active, you generally don't need to do anything — certificates are managed automatically.
To check AutoSSL status:
- Go to SSL/TLS Status in the Security section.
- You'll see each domain listed with its certificate status and expiry date.
- Click Run AutoSSL to trigger an immediate check and renewal if needed.
Forcing HTTPS
After installing an SSL certificate, you should redirect all HTTP traffic to HTTPS:
- In cPanel, go to Domains.
- Find the domain and toggle Force HTTPS Redirect to on.
Alternatively, add the following to your .htaccess file:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
Tips
- SSL certificates have expiry dates. AutoSSL handles renewals automatically, but if you've installed a certificate manually, set a reminder to renew it before it expires.
- After installing or changing an SSL certificate, clear your browser cache and test in an incognito window.
- Mixed content warnings (padlock with a warning icon) occur when your HTTPS page loads some resources (images, scripts, stylesheets) over HTTP. Update all resource URLs to use HTTPS.
- Use an online SSL checker (e.g. SSL Labs) to verify your certificate is correctly installed.
What Next?
- Installing a Free SSL Certificate (Let's Encrypt) — Get a free certificate.
- Understanding .htaccess Files — Advanced HTTPS redirect configuration.
