cPanel/Webhost Manager (WHM)


Installing your Trustwave® SSL Certificate

Note: Trustwave® certificates come as a ".cer" extension. Technically speaking the ".cer" and ".crt" extensions are one and the same. If your server requires that you use ".crt" files, then you can simply rename a ".cer" file to ".crt"

Within the WebHost Manager, click on "Install a Certificate" in the SSL/TLS Menu. The top box is for your certificate that you received from Trustwave®. If you open the ZIP file that you received from Trustwave® when your certificate was issued, you will find a file named "[yourdomain].cer" - this is your SSL certificate. Open that file in a text editor, like notepad, and copy the entire text to the clipboard. Be sure to include the top and bottom dashed lines when you copy the certificate. Paste the certificate data into the top box on the certificate installation page.

After you paste in your certificate, the information about your domain, username and IP address may fill in automatically. Be sure to use your cPanel username, not your WHM username.

The second large text box is for the private key. WHM may put this key in automatically for you, but do not use this, simply copy and paste the private key ("[yourdomain].key") from the e-mail that you received via email from your server after creating your CSR. If you no longer have this message or did not receive it, please generate a new CSR and key and save both to separate text files; csr.txt and key.txt, respectively. Next please email your new CSR to sslsupport@trustwave.com to request a reissue.

Note: This email typically comes from "admin@[yourdomain]" or "administrator@[yourdoman]"; it does NOT come from Trustwave®.

The third large text box is for the Trustwave® Intermediate/Chain certificate; also known as a CA Bundle. If you open the ZIP file that you received from Trustwave® when your certificate was issued, you will find a file named "chain.cer" - this is the Trustwave® Intermediate/Chain certificate. As with the "[yourdomain].cer" file, open the Intermediate/Chain file in a text editor, like notepad, and copy the entire text to the clipboard. Be sure to include the top and bottom dashed lines when you copy the certificate. Paste the certificate data into the last box on the certificate installation page.

Be sure to include the top and bottom dashed lines when you copy and paste.

Click "Do It" or "Submit" and your SSL certificate will be installed.

Manual Intermediate Certificate Installation

If the Intermediate certificate was not correctly installed using the above instructions you may need to install it directly in Apache. If you do not have access to the Apache configuration files you will need to have your web host or administrator follow these instructions to install the Intermediate certificate:

  • Locate the Virtual Host File: On most Apache servers the Virtual Sites are configured in the /etc/httpd/conf/httpd.conf file. However, the location and name of this file can vary from server to server -- Especially if you use a special interface to manage your server configuration. Another common name for the file is 'SSL.conf'. If you open the file with a text editor, you will see the configurations for the virtual hosts that are housed on the server. The virtual host configurations are probably found near the end of the file.
  • Identify the secure Virtual Host for your site: Locate the Virtual host configuration for the site you are securing. It will have the proper name and IP address (including port 443).
  • Configure the Virtual Host For SSL: cPanel has already setup the first three SSL configuration lines for you. Now you will edit your Virtual Host configuration by adding the 'SSLCertificateChainFile' line below:
  • <VirtualHost 192.168.0.1:443>
     DocumentRoot /var/www/html2
     ServerName www.yourdomain.com
     SSLEngine on
     SSLCertificateFile /path/to/your_domain_name.cer
     SSLCertificateKeyFile /path/to/your_private.key
     SSLCertificateChainFile /path/to/chain.cer
     </VirtualHost>
  • Save the changes to your configuration file.
  • Save the Intermediate Certificate file to the Server: Verify that the Intermediate Certificate file (chain.cer) is saved to the path you configured above.

Completing the installation

Back in WHM, use the "Restart Apache" link to restart your Apache server.



Certificate Analyzer

Once you have completed your certificate installation you can use our instant online troubleshooter to verify your installation and help resolve problems.
Certificate Analyzer→

Go Green