Before attempting to set up Secure Hosting, please familiarize yourself with the information in the Secure Hosting article. It's crucial that the initial configuration is done correctly as there are some parameters that cannot be changed afterward without completely removing and then re-adding Secure Hosting from your domain.
Once you familiarize yourself with the information in the Secure Hosting article, proceed with the following steps to add your SSL certificate.
Browser warnings for self-signed certificates
A self-signed certificate is NOT signed by a trusted authority. That's what meant in that it is 'self' signed. Because a trusted authority did not sign it, browsers cannot trust it. It will still function normally, but visitors to your site will see a warning. Below are examples of what a visitor would see in Firefox and Chrome.
If you want to attract visitors to your site, DO NOT use a self-signed certificate.
Two methods to add a self-signed certificate
- Navigate to the (Panel > 'Domains' > 'Secure Hosting') page. The top section titled 'Active SSL certificates' lists any active SSL certificates for your domains.
- The next section titled 'Add a new SSL certificate' lists three options to add an SSL to your domain:
- Click the option to add a 'Self-signed SSL'.
- From the dropdown, choose your domain and if you wish to purchase a Unique IP address.
- Click the 'Add now!' button.
- A Success message appears confirming the certificate has been added.
- Navigate to the (Panel > 'Domains' > 'Manage Domains') page.
- The 'Manage Domains' page opens:
- You are then taken to the 'Secure Hosting' page. As shown above, this is where you can select the type of certificate you'd like to install.
Forcing your site to load HTTPS be default
Even after you have added the SSL certificate to your site, visitors will not be able to use it unless they manually type in 'https' before your domain name. This defeats the purpose of adding it in the first place since the certificate is meant to protect all of your website traffic.
There are several ways to fix this. View the following article for instructions on how to create a configuration file to redirect all visitor traffic to the secure version of your URL (https).