May 2023

How to install SSL on WooCommerce The following instructions will guide you through the SSL installation process on WooCommerce. If you have more than one server or device, you will need to install the certificate on each individual server or device you need to secure. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions and disregard the steps below. What You’ll Need Your server certificate This is the certificate you received from the CA for your domain. You may have been sent this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order.  Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificates, which is sometimes referred to as a CA Bundle. If not, download the appropriate CA Bundle for your certificate. Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. On certain platforms, such as Microsoft IIS, the private key is not immediately visible to you but the server is keeping track of it  Installation Instructions Install your SSL certificate You’ll need to install the SSL certificate on your server, for directions by server-type, click here. Configure your server Redirect all URLs to HTTPS, again for directions by server-type, click here. Force SSL Setting Go to settings, select Checkout, then Checkout Options and finally Force Secure Checkout Congratulations! You’ve successfully installed your SSL certificate! To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly. Remember, you may need to restart your server for changes to take effect.  

How to Install SSL on Webmin The following instructions will guide you through the SSL installation process on Webmin. If you have more than one server or device, you will need to install the certificate on each individual server or device you need to secure. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions and disregard the steps below. What You’ll Need Your server certificate This is the certificate you received from the CA for your domain. You may have been sent this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order.  Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificates, which is sometimes referred to as a CA Bundle. If not, download the appropriate CA Bundle for your certificate. Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. On certain platforms, such as Microsoft IIS, the private key is not immediately visible to you but the server is keeping track of it Installation Instructions Copy Certificates to the Server Copy your certificate files (SSL & intermediates), along with your private key, and put them on your server. Locate your Miniserv.pem file It’s usually located in the same directory as your Miniserv.conf file. You’re going to be replacing miniserv.pem with a new one you will create shortly. Create a new Miniserv.pem There are two ways to do this, either enter the following command line: cat private.keyyourdomain.crt > new-miniserv.pem OR, you can open both your SSL certificate and private key, paste both into a new .txt file (key first, then certificate) and save it as new-miniserv.pem. Configure your miniserv.conf file Finally you’ll need to add your intermediate. Open your .conf file and enter the location of the intermediate you copied to the server earlier: extracas=/etc/webmin/intermediate_certificate.crt Congratulations! You’ve successfully installed your SSL certificate! To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly. Remember, you may need to restart your server for changes to take effect.  

How to Install SSL on Joomla The following instructions will guide you through the SSL installation process on Joomla. If you have more than one server or device, you will need to install the certificate on each individual server or device you need to secure. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions and disregard the steps below. What You’ll Need Your server certificate This is the certificate you received from the CA for your domain. You may have been sent this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order. Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificates, which is sometimes referred to as a CA Bundle. If not, download the appropriate CA Bundle for your certificate. Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. On certain platforms, such as Microsoft IIS, the private key is not immediately visible to you but the server is keeping track of it Installation Instructions Install on your Server Before you can add SSL to your Joomla site, you’ll need to install the certificate on your server and you’ll need to remember its IP address. Configure your configuration.php file Open your configuration.php file and find the line that says “var.$live_site=” and enter your URL. Configure your .htaccess file Add the following lines of code: RewriteEngine On RewriteCond %{HTTPS} OFF RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} Enable SSL In Global Configuration, under the Server tab, there are three options in the Settings section. Choose Entire Site. Save Hit the Apply/Save button Congratulations! You’ve successfully installed your SSL certificate! To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly. Remember, you may need to restart your server for changes to take effect.  

How to install SSL on Drupal The following instructions will guide you through the SSL installation process on Drupal. If you have more than one server or device, you will need to install the certificate on each individual server or device you need to secure. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions and disregard the steps below.  What You’ll Need  Your server certificate This is the certificate you received from the CA for your domain. You may have been sent this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order. Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificates, which is sometimes referred to as a CA Bundle. If not, download the appropriate CA Bundle for your certificate. Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. On certain platforms, such as Microsoft IIS, the private key is not immediately visible to you but the server is keeping track of it Installation Instructions Configure your server Remember, Drupal is not a server, it’s a CMS, so you will need to configure your server first. Add the following directive <Directory “/path/to/yoursite”> AllowOverride All </Directory> Redirect all HTTP traffic to HTTPS <Virtual Host *:80> ServerName example.com Redirect “/” https://example.com/ </VirtualHost> <VirtualHost *:443> ServerName www.example.com # … SSL Configuration Goes Here </VirtualHost> Congratulations! You’ve successfully installed your SSL certificate! To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly. Remember, you may need to restart your server for changes to take effect.  

How to Install SSL on BigCommerce The following instructions will guide you through the SSL installation process on BigCommerce. If you have more than one server or device, you will need to install the certificate on each individual server or device you need to secure. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions and disregard the steps below. What You’ll Need Your server certificate This is the certificate you received from the CA for your domain. You may have been sent this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order. Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificates, which is sometimes referred to as a CA Bundle. If not, download the appropriate CA Bundle for your certificate. Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. On certain platforms, such as Microsoft IIS, the private key is not immediately visible to you but the server is keeping track of it Installation Instructions Access Server Settings In the BigCommerce control panel, select Server Settings Add a 3rdParty SSL Certificate Select SSL Certificate, then click “Add a 3rd Party” Copy and Paste Copy and paste your SSL Certificate and any accompanying intermediates in to their respective fields Install Click Install, your certificate should be installed within 20 minutes Congratulations! You’ve successfully installed your SSL certificate! To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly. Remember, you may need to restart your server for changes to take effect.  

How to Install SSL/TLS Certificate on Google App Engine The following instructions will guide you through the SSL installation process on Google App Engine. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions. What You’ll Need Your server certificate This is the certificate you received from the CA for your domain. You may have received this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order. Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificate(s), which is sometimes referred to as a ‘CA Bundle.’ If not, download the appropriate CA Bundle for your certificate. Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. SSL/TLS Certificate Installation Instructions for Google App Engine Log into your Google Cloud account at https://cloud.google.com Go to Products & Services > App Engine In the App Engine Select SSL Certificates from the Settings option In SSL Certificates click on “Upload a new certificate” button & you will be shown the “Add a new SSL Certificate” option Locate certificate files Now, you must locate certificate files & the Private Key code that you had generated with the CSR. After that, click on “Upload” button to complete the installation process. Finally, you will see a page consisting of SSL installation details in it. Choose the domains you want to secure under “Enable SSL for the following custom domains” option & click “Save” button.  

How to Install SSL/TLS Certificate in Microsoft Exchange 2016 The following instructions will guide you through the SSL installation process on Microsoft Exchange 2013 EAC. If you still have not generated your certificate and completed the validation process, reference our Exchange 2016 CSR Generation Instructions. What You’ll Need Your server certificate This is the certificate you received from the CA for your domain. You may have received this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order. Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificate(s), which is sometimes referred to as a ‘CA Bundle.’ Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. Neither TheSSLStore nor the Certificate Authority requests or keeps your private key. SSL/TLS Certificate Installation Instructions for Microsoft Exchange 2016 Save SSL File to Server Copy your domain’s SSL certificate to the Exchange 2016 server’s network share folder, where the CSR was saved. Login to Exchange Admin Center Navigate to your Exchange Admin Center (EAC) via browser using your server’s URL (i.e. https://localhost/ecp) Login to the Exchange Admin Center with your Domain/user name and password. Complete “Pending Request” In EAC, on the left-hand sidebar menu, click Servers, then at the top of the page click Certificates. Certificates: In the center window, select your certificate request (listed by Friendly Name). On the right side, in the certificate request details panel, look under Status and click Complete. Provide the Path of the Saved Certificate Complete Pending Request Wizard: Under File to import, enter the UNC path to the location of your SSL file. Click OK. The certificate should now be installed, and the certificate request status should be Valid. Enable SSL/TLS Certificate for Exchange Services On the Certificates page, select the installed SSL and click the pencil icon. Certificate window: Click Services. Check all services that should utilize the SSL certificate, and click Save. Your SSL should now be enabled on all selected services on your Exchange 2016 server.  

How to Install SSL/TLS Certificate in Microsoft Exchange 2013 EAC The following instructions will guide you through the SSL installation process on Microsoft Exchange 2013 EAC. If you still have not generated your certificate and completed the validation process, reference our CSR Generation Instructions. What You’ll Need Your server certificate This is the certificate you received from the CA for your domain. You may have received this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order. Your intermediate certificates These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificate(s), which is sometimes referred to as a ‘CA Bundle.’ If not, download the appropriate CA Bundle for your certificate. Your private key This file should be on your server, or in your possession if you generated your CSR from a free generator tool. SSL/TLS Certificate Installation Instructions for Microsoft Exchange 2013 EAC Complete your “Pending Request”. In the Exchange Admin Center, click on “Services”, go to “Certificates” and select the Pending Request. Then, click on “Complete” in the menu located on the right-hand side. Provide the path of the saved certificate. Review the “Status” column and see if the certificate is now Valid. Once the pending request is completed and you are directed to certificates menu, you will be notified in the Status column that the certificate is now valid. Note: SSL/TLS Certificates which are installed for Exchange services such as Outlook, ActiveSync, POP, SMTP, IMTP, etc. are not enabled automatically. It must be done manually by enabling the SSL/TLS certificate through the “edit” button. Enable SSL/TLS Certificate for Exchange Services Choose the services that you want to enable encryption for. Select the services for which you want to enable the SSL/TLS Certificate, and edit configuration of the installed SSL/TLS Certificate. While doing this you might notice that certain services are active by default and therefore it cannot be changed. It’s because Microsoft Exchange 2013 does not offer the editing of the SSL/TLS Certificate from the services. Instead of that, you would have to assign another SSL/TLS Certificate for these services that will be overwritten on the existing one. Overwrite any existing certificates. If you are heading towards overwriting the existing SSL/TLS Certificate, you will receive a warning message as shown below. Nothing to worry about, it’s shown just because the self-signed server certificate was already installed. Just click “Yes” to confirm overwriting. Congratulations, the SSL/TLS Certificate has been installed on your server!