This page looks best with JavaScript enabled

How to get a free SSL for cPanel hosting ?

 ·  ☕ 2 min read

What you’ll need

  1. Acces to cPanel admin panel
  2. Access to modify DNS settings from your domain registrar
  3. An email id to create an account at cloudfare.com

What you need to do

Be patient & follow all the 4 parts of this guide.

Part 1: Setup Your website to use cloudfare nameservers

Steps:

  1. Create a free account at cloudfare.com.
  2. Enter your domain name
  3. Choose the free $0 plan
  4. Access the DNS settings page by logging in to your domain registrar’s website (GoDaddy, Namecheap etc.)
  5. Replace your existing nameservers with the ones provided by cloudfare
You need to wait for few hours for the new DNS records to propagate.

Part 2: Obtain Origin Certificate and Private Key from Cloudflare

Next, we need to get an “Origin Certificate” and “Private Key” from Cloudflare. Later, we will install these in the cPanel.

Now, go to your Cloudflare account dashboard, “SSL/TLS” > “Origin Server”, then click on “Create Certificate”.

Create Cloudflare Origin Certificate
Cloudflare: create origin certificate

Cloudfare will fill in the domain name & wildcard domain. Leave everything to the default & click on create to get certificates.

Cloudflare origin certificate installation
Cloudflare: origin certificate installation

Now you should see something similar to this. Leave the format as PEM

Cloudflare origin certificate & private key
Cloudflare: origin certificate & private key in PEM format

Part 3: Uploading the Origin Certificate and Private Key to the server using cPanel

In your cPanel hosting, go to “SSL/TLS” under the “SECURITY” section. Then click on Manage SSL sites as shown below.

cPanel SSL/TLS section
cPanel: SSL/TLS section

Now choose the option which looks like this

cPanel SSL/TLS section 2
cPanel: SSL/TLS section 2

Now copy the Origin Certificate from cloudfare & paste it under Certificate: (CRT) in your cPanel.

Next copy the Private Key from Cloudfare & paste it under Private Key (KEY) in your cPanel.

Pasting cert & Key in cPanel
cPanel: pasting certificate & Key

Finally click on Install Certificate to finalize installation of certificates.

finalizing certificates installation
cPanel: finalizing certificates installation
You need not fill in anything under CABUNDLE since it will be fetched automatically.

Part 4: Change SSL/TLS Encryption to Full (strict) Mode on Cloudflare

Most importantly, you need to turn on the “Full (strict)” mode in your Cloudflare settings.

In your Cloudflare account, “SSL/TLS” > “Overview”, set the SSL/TLS encryption mode to “Full (strict)”.

Turn on full(strict) encryption
Cloudfare settings: Turn on full(strict) encryption

Summary

In this guide you learnt how to obtain a SSL certificate for free from Cloudfare & use it to secure your cPanel based website.