Configure SSL/HTTPS in cPanel

What is SSL/HTTPS?

SSL (Secure Sockets Layer) and its successor TLS (Transport Layer Security) are security protocols that encrypt communication between the browser and server. HTTPS is HTTP over SSL/TLS, meaning data is transmitted securely and encrypted.

Using HTTPS is essential for:

  • Protecting user data (passwords, personal information)
  • Improving SEO (Google favors HTTPS sites)
  • Building trust with visitors
  • Meeting modern security standards

Method 1: Use Let's Encrypt (Free and Recommended)

1. Access cPanel

  • Go to your cPanel panel
  • Log in with your credentials

2. Go to SSL/TLS section

On the cPanel main page, look for the "Security" section and click on "SSL/TLS" or "SSL/TLS Status".

You can also search for it using the search box at the top of cPanel.

3. Install Let's Encrypt certificate

In the "SSL/TLS Certificates" section:

  1. Click "Manage SSL certificates"
  2. Look for the "Let's Encrypt Certificates" section
  3. Select the domain for which you want to install the certificate
  4. Select additional domains you want to include (www, subdomains, etc.)
  5. Click "Install"

cPanel will automatically install the Let's Encrypt certificate. This may take a few minutes.

4. Verify installation

After installation:

  1. Go back to "SSL/TLS Status"
  2. Verify the certificate is installed and active
  3. Try accessing your site with https://yourdomain.com

Method 2: Install commercial SSL certificate

If you have a purchased SSL certificate:

  1. In cPanel, go to "SSL/TLS" > "Manage SSL certificates"
  2. Select the domain
  3. Paste the certificate in the "Certificate (CRT)" field
  4. Paste the private key in the "Private Key (KEY)" field
  5. If you have an intermediate certificate, paste it in "CA Bundle Certificate (CABUNDLE)"
  6. Click "Install Certificate"

Force HTTPS (HTTP to HTTPS redirect)

To make all visitors use HTTPS automatically:

Option 1: From cPanel

  1. In cPanel, search for "Redirects"
  2. Select type "Permanent (301)"
  3. In "https?://(www\.)?yourdomain.com", enter your domain
  4. In "https://yourdomain.com/$1", enter the URL with HTTPS
  5. Click "Add"

Option 2: Using .htaccess

  1. In cPanel, open "File Manager"
  2. Navigate to public_html
  3. Edit or create the .htaccess file
  4. Add this code:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Save the file.

Renew Let's Encrypt certificate

Let's Encrypt certificates expire every 90 days, but cPanel can renew them automatically:

  1. In "SSL/TLS Status", check the expiration date
  2. If it's close to expiring, click "Renew"
  3. Or configure automatic renewal if available

Note: In most cases, cPanel automatically renews Let's Encrypt certificates before they expire.

Verify certificate status

To verify your SSL certificate is working correctly:

  • Access your site with https://yourdomain.com
  • In the browser, verify the green lock appears
  • Click on the lock to see certificate details
  • Use online tools like SSL Labs for a complete analysis

Configure certificate for multiple domains

If you have multiple domains or subdomains:

  1. When installing Let's Encrypt, select all domains and subdomains you want to include
  2. Or install a wildcard certificate (if available) that covers all subdomains

Wildcard certificate: Covers all subdomains (e.g., *.yourdomain.com covers blog.yourdomain.com, shop.yourdomain.com, etc.)

Common problems

Error: "Certificate installation failed"

  • Verify the domain is pointing correctly to the server
  • Verify DNS records are configured
  • Wait a few minutes and try again

Site shows "Not Secure" or warning

  • Verify the certificate is installed correctly
  • Verify you're accessing with https:// and not http://
  • Clear browser cache
  • Verify there's no mixed content (HTTP and HTTPS mixed)

Mixed content error

  • Occurs when your HTTPS site loads resources (images, scripts) from HTTP
  • Change all resource URLs to HTTPS
  • Or use relative URLs instead of absolute

Certificate expired

  • Renew the certificate from cPanel
  • Verify automatic renewal is configured

Advanced configuration

Force HTTPS only for certain pages

In the .htaccess file, you can configure specific rules:

# Force HTTPS only for /admin
RewriteCond %{HTTPS} off
RewriteCond %{REQUEST_URI} ^/admin
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Configure HSTS (HTTP Strict Transport Security)

To further improve security, add HSTS in .htaccess:

<IfModule mod_headers.c>
Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
</IfModule>

Tips

  • Use Let's Encrypt: It's free, automatic and reliable
  • Configure automatic renewal: Make sure certificates renew automatically
  • Force HTTPS: Configure HTTP to HTTPS redirect
  • Verify regularly: Check your certificates status periodically
  • Update WordPress/plugins: If using WordPress, update URLs in Settings > General
  • Use wildcard certificates: If you have many subdomains, consider a wildcard certificate

Need help?

If you're having trouble configuring SSL/HTTPS in cPanel, open a ticket from the billing.baires.host panel or contact us for support.

You can also reach us through our social media:

Was this answer helpful? 0 Users Found This Useful (0 Votes)

Most Popular Articles

Create a MySQL database in cPanel

Create MySQL database in cPanel Why create a database in cPanel? MySQL databases are...
Set up a domain in cPanel

Configure a domain in cPanel What does configuring a domain in cPanel mean? Configuring a...
Install WordPress from cPanel

Install WordPress from cPanel Why install WordPress from cPanel? WordPress is the most...
Set up email in cPanel

Instalar WordPress desde cPanel ¿Por qué instalar WordPress desde cPanel? WordPress es el...
Create subdomains in cPanel

Create subdomains in cPanel What is a subdomain? A subdomain is an extension of your main...