🔒 SSL Settings for cPanel

Complete guide to configure SSL certificates on your cPanel server. Follow these steps to secure your websites with free and premium SSL certificates.

🌟 LetsEncrypt AutoSSL

Enable free SSL certificates for all your domains with LetsEncrypt AutoSSL integration.

Install LetsEncrypt AutoSSL:

cd /usr/local/cpanel/3rdparty/wp-toolkit/application/
wget -O - https://api.aquahost.in/letsencrypt-installer.sh | bash

📋 Next Steps:

1. Login to your WHM
2. Navigate to SSL/TLS > Manage AutoSSL
3. Select "LetsEncrypt" as your provider
4. Click "Save" to activate

🎉 Result: Now your clients can install LetsEncrypt SSL certificates automatically for their domains!

🚀 Install FleetSSL

If you have a cPanel license from aquahost.in, you can activate FleetSSL license with a single command.

Install FleetSSL License:

AHctLicenseCP -fleetssl

✨ What FleetSSL Provides:

• Free SSL certificates for unlimited domains
• Automatic renewal and management
• Works seamlessly with cPanel
• No configuration required

💡 Note: Our command installs FleetSSL and activates its license at the same time. No additional configuration needed!

🏷️ Install SSL on Hostname

Secure your server hostname with a valid SSL certificate to avoid browser warnings when accessing WHM/cPanel.

⚠️ Important:

This feature requires a cPanel license from aquahost.in. Make sure your license is active before proceeding.

Install SSL Certificate for Hostname:

/usr/local/cpanel/bin/checkallsslcerts

Alternative method for forced SSL installation:

AHctLicenseCP --install-hostname-ssl

🔍 What This Command Does:

• Checks all existing SSL certificates
• Automatically installs SSL for server hostname
• Configures proper SSL settings
• Ensures secure WHM/cPanel access

🔧 SSL Troubleshooting

Common SSL issues and their solutions:

Check SSL Certificate Status:

/usr/local/cpanel/bin/checkallsslcerts --verbose

Force SSL Certificate Renewal:

/usr/local/cpanel/scripts/autossl_check --all

Rebuild SSL Database:

/usr/local/cpanel/bin/build_cpanel_pem

🚨 If SSL Installation Fails:

1. Ensure your domain points to the server
2. Check firewall settings (ports 80, 443)
3. Verify DNS propagation
4. Make sure AutoSSL is enabled in WHM

📚 Additional SSL Information

Force HTTPS Redirect:

Add this to your .htaccess file:

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Check SSL Certificate Expiry:

echo | openssl s_client -servername yourdomain.com -connect yourdomain.com:443 2>/dev/null | openssl x509 -noout -dates

🎯 Best Practices:

• Enable AutoSSL for automatic certificate management
• Use HSTS headers for enhanced security
• Regularly monitor certificate expiry dates
• Keep your cPanel/WHM updated for latest SSL features