What is SSL certificate?
SSL stands for “Secure Sockets Layer”. Secure Sockets Layer is a protocol designed to enable applications to transmit information back and forth securely. Applications that use the Secure Sockets Layer protocol inherently know how to give and receive encryption keys with other applications, as well as how to encrypt and decrypt data sent between the two.
How does SSL work?
The applications such as web browsers like Internet Explorer and FireFox, email programs like Outlook, Mozilla Thunderbird, Apple Mail.app, and SFTP (secure file transfer protocol) programs, etc. are automatically able to receive SSL connections. To establish a secure SSL connection, however, your application must first have an encryption key assigned to it by a Certification Authority in the form of a Certificate. Once it has a unique key of its own, you can establish a secure connection using the SSL protocol.
How can a customer purchase the SSL certificate for his domain?
We must first generate an CSR for his domain. Once the CSR is generated, he needs to purchase a SSL certificate from any of the SSL certificate provider using the CSR. He must also purchase an dedicated IP address for the website.
The IP address for a domain can be changed from WHM as follows:
WHM >> Main >> Account Functions >> Change Site’s IP Address
Steps to Generate CSR
1. On a Linux server
Execute the following command in the console:
openssl req -out CSR.csr -new -newkey rsa:2048 -nodes -keyout privateKey.key
On executing this command, you will be prompted to enter the details of the domain. Once the details are entered, the CSR and private key for the domain will be saved in the file ‘CSR.csr’ and ‘privatekey.key’ respectively. The ‘CSR.csr’ and ‘privatekey.key’ may be replaced by the names of the file in which they need to be stored.
2. From WHM
You may generate a CSR from WHM as follows:
WHM >> Main >> SSL/TLS >> Generate a SSL Certificate and Signing Request