This article provides quick instructions on how to generate a CSR Code and install an SSL Certificate on CWP (CentOS Web Panel). In the final two sections, we’ve also included a brief overview of CWP and some tips on where to buy the best SSL Certificate for your website. If you’ve already applied for your SSL Certificate and obtained the necessary SSL files, skip the CSR generation part and jump straight into the installation instructions.
Generate the CSR code on CWP
Certificate Signing Request (CSR) is a block of code with encrypted details about your company and the domain name you want to secure. This code is required for the activation of your SSL certificate.
To generate the CSR, follow the instructions below:
- Log into your CWP admin area as a root with provided details.
- From the left-hand menu, select Apache Settings, then choose SSL Certificate.
- Click on the Generate CSR tab and fill in the form as shown below:
- Common Name (Domain) – enter the fully qualified domain name (FQDN) you would like to encrypt. If you are activating a wildcard certificate, add an asterisk (e.g. *.yourdomain.com).
- Country Name (Code) – type the two-letter ISO code of your country of residence.
- State or Province Name – enter the name of your state or region.
- City Name – enter the full name of your city or local area. Please avoid using abbreviations.
- Organization Name – provide the legally-registered company name. If you do not have an organization, you can enter NA (not available).
- Organization Unit Name – enter the name of the department within your organization in charge of SSL management. For example, IT or Web
- Email Address – provide a valid email address to receive the SSL files from your CA.
- Valid Days (default 365) – enter the default value 365. This value will not affect the validity period of your certificate.
- Key Size – select the 2048b bits key size from the drop-down list.
- After you’ve filled in the CSR form, click the Generate button.
- The system will create two files: the CSR code and the private key. Your CSR code, by default, should be located in the /etc/pki/tls/certs/ folder in a file with the ‘.csr’ extension.
- Open the CSR file with a text editor and copy the entire content into your SSL order form. You can locate your private key in the Private Key tab on your CWP dashboard. The Private Key will automatically be saved in the /etc/pki/tls/private/directory.
Install the SSL Certificate on CWP
After the CA validates your SSL request, you’ll receive the necessary SSL installation files via email. You can download the archived folder and extract its contents on your device. To install the certificate, perform the steps below.
- Log into your CWP admin area and click on Apache Settings from the left-hand navigation menu.
- From the expanded Apache Settings, select SSL Certificates, and then switch to the Manual Install tab.
- From the drop-down list next to the Domain, choose the domain name you want to secure.
- Now, copy the certificate code you received by email from your CA, including the —–BEGIN CERTIFICATE—– and —–END CERTIFICATE—– tags and paste it to the Certificate box. You can get the code from the file with .crt extension.
- Next, paste your Private Key code generated along with your CSR into the corresponding box. Include the header —–BEGIN PRIVATE KEY—– and footer —–END PRIVATE KEY—-.
- Lastly, copy and paste the chain of intermediate certificates (CA Bundle) into the Certificate Authority box. If you didn’t receive the CA Bundle file, click Generate Intermediate Certificates button instead.
- To ensure that your certificate matches your private key, click Validate Certificate than Save.
Congrats! You’ve successfully installed an SSL certificate on CWP.
Test your SSL installation
After you install the SSL Certificate on FortiGate, you should run an SSL scan to look for potential errors or vulnerabilities in your configuration. For more info, check our article on the best SSL tools for testing an SSL Certificate.
CentOS Web Panel (CWP) is a control panel for web hosting. A free alternative to cPanel, it offers an easy-to-use interface and several other features for users who want to create and manage hosting servers. CWP allows you to install LAMP or LEMP stacks easily. The latest CWP release is Version 0.9.8.1107 on December 6, 2021.
Where to buy the best SSL certificate for CWP?
SSL dragon is your one-stop place for all your SSL needs. We offer the lowest prices on the market for the entire range of our SSL products. We’ve partnered with the best SSL brands in the industry to offer you high-end SSL security and dedicated support. All our SSL certificates are compatible with CWP. Here are the SSL certificate types you can buy from us:
- Domain Validation
- Business Validation
- Extended Validation
- Code Signing
- IP Address
To help you select the right SSL certificate, we created a couple of handy SSL tools. Our SSL Wizard can recommend the best SSL deal for your online project, while the Certificate Filter, can help you sort and compare various products.
If you find any inaccuracies, or you have details to add to these SSL installation instructions, please feel free to send us your feedback at [email protected] Your input would be greatly appreciated! Thank you.