How to Manage SSL Certificates Using SSL/TLS Manager in cPanel
Steps to Access the SSL/TLS plugin
- Log in to your cPanel via valid credentials:
- Navigate to SSL/TLS option under the Security tab of your cPanel

- Alternatively, you can search SSL in the search bar:

SSL/TLS Manager has the following options
(A) Private Keys (KEY)
Generate, view, upload, or delete your private keys.
(B) Certificate Signing Requests (CSR)
Generate, view, or delete SSL certificate signing requests.



(C) Certificates (CRT)
Generate, view, upload, or delete SSL certificates.
To Generate a self-signed SSL certificate
This option is only useful if you wish to generate a self-signed SSL certificate. Scroll down to the Generate a New Certificate section and fill out all of the details for your self-signed SSL certificate, click Generate. After generating and installing a self-signed SSL certificate, your website will still show the "Not Secured" warning as this certificate has not been signed by a trusted authority, and thus, we do not recommend using this option.
To upload an SSL certificate
If you already have an existing certificate, you can upload it by either pasting it in the Paste your certificate below text field or if you have .crt file you can upload it by clicking the Browse button. When ready, click the Save Certificate or Upload Certificate button depending on the method you used to upload the certificate. It is recommended to use the next option (D) to upload the certificate for your website instead of using this.
(D) Manage SSL Sites
After you have submitted your CSR to the certificate authority, completed verification and received your SSL certificate, here is where you will upload the certificate to the server.
Firstly, you need to select the domain from the dropdown and paste the certificate that you have received from certificate provider. Once you do so, you will see an option that says "Autofill by certificate" as seen below:

After you click on this "Autofill by certificate" option, the cpanel will automatically find the matching private key saved on the server and the relevant CA-bundle files and display them. Now, you can install the certificate.
Note
The private key will be auto-filled as long as you generated and submitted the CSR generated via the cpanel itself to the certificate signing authority. If a private key does not get auto-filled it means that a different CSR has been submitted or the private key has been deleted by a user from the cpanel. In this case, you will need to redo the process.