Security

SSL/TLS Status

Updated: 22 February 2024
cPanel Version: 118

SSL/TLS (Secure Sockets Layer/Transport Layer Security) is a security protocol essential for protecting user data while it's transmitted across the internet. The SSL/TLS Status menu in cPanel allows you to view and manage your website's SSL/TLS certificates. This tutorial will guide you through accessing and understanding this menu.

Accessing the SSL/TLS Status Menu

  1. Log into your cPanel account.
  2. Scroll down to the Security section.
  3. Click on SSL/TLS Status.

Understanding the SSL/TLS Status Menu

Once you're in the SSL/TLS Status menu, you'll see a list of all your domains and subdomains, along with their SSL/TLS status. Here's what each status means:

  • Included Certificate: The domain or subdomain is covered by an SSL certificate that's included with your hosting package.
  • Active Certificate: The domain or subdomain has an active SSL certificate that you've purchased separately.
  • Expired Certificate: The domain or subdomain's SSL certificate has expired and needs to be renewed.
  • No Certificate: The domain or subdomain does not have an SSL certificate and is not secure.

Importance of SSL/TLS Certificates

SSL/TLS certificates are crucial for your website's security and credibility. Without them, any data transmitted between your website and its users is vulnerable to interception. Plus, many modern web browsers display a warning to users when they visit a website without an SSL/TLS certificate, which can deter visitors and harm your site's reputation.

The Domains Table

The Domains table shows a list of your websites and their security certificates. It helps you to check or update the security certificates for your websites.

Domain

This section lists all your websites. It shows a symbol next to each one to tell you what type of security certificate it has, if any:

  • Unsecured certificate icon — This means there's no security certificate.
  • Self-signed certificate icon — The website uses a certificate it created itself, not issued by a security authority.
  • AutoSSL DV certificate icon — The site has a basic security certificate given automatically.
  • DV certificate icon — The site has a verified certificate, showing the site's owner has been checked and confirmed.
  • OV certificate icon — The site has an organization-verified certificate, providing more trust by confirming the business's legitimacy.
  • EV certificate icon — The site has an extended verification certificate, the highest level of trust, showing thorough verification of the business's existence and operations.

Certificate Status

This part shows details about the security certificate for each website. If there's a problem with a certificate, it'll list the error here. It also tells you when the website last checked for automatic security updates (AutoSSL). You might see options like:

  • View Certificate — Lets you see detailed information about the website's certificate. This option is for websites that already have a certificate.
  • Upgrade Certificate or Purchase Certificate — Allows you to get a better certificate or buy one if the website doesn't have it. This takes you to a place where you can choose the type of certificate you want.
  • Include during AutoSSL or Exclude from AutoSSL — Choose whether the website should automatically get security updates or not.

Note:

Some options only show up for certain websites, depending on their current security setup.


External links

SSL/TLS Status - cPanel Documentation