How do I create a self-signed SSL/TLS certificate?

This guide is intended for those who know that they specifically need a self-signed certificate. If you need an ordinary SSL certificate, we recommend that you use a free certificate issued via AutoSSL.

Self-signed certificates will always trigger a warning from your web browser when you try to access a website using one. Therefore, you need to bypass the warning to reach the website.

A self-signed SSL certificate can be used e.g. during a transfer of a website to us (from another provider) where the domain has been pointed locally towards our server. You may e.g. do this to ensure that the website is working properly before pointing the domain globally (especially if the website uses an automatic redirect from http to https). These certificates are only meant to be used temporarily.

Self-signed certificates shouldn’t be used on live websites. This since the visitors will get a warning in their browsers regarding non-trusted certificate issuer.

To create a self-signed SSL certificate, follow these steps:

1. Begin by logging on to cPanel.
2. Click the icon SSL/TLS under Security.
   
   
3. First, you need to create a private key for the certificate. Therefore, click the link under Private keys.
   
   
4. Here, select the Key Type and add a Description for the key:
   
   Key Type: Choose RSA, 4096-bit here.
   
   Description: Enter a description for the key, so that you’ll recognise it in the list of keys if you have more than one. Our plan in this example is to issue a certificate for the domain exempel.se, so we name the key accordingly.
   
   Create the key by clicking the Generate button.
5. Your key will now be generated and displayed. You don’t have to do anything with the displayed key, just scroll down and click Return to SSL Manager.
   
   
6. Now, click the link below Certificates. You will not have to worry about a CSR when you create a self-signed certificate.
   
   
7. Scroll down until you find Generate a New Certificate and fill out the form:
   
   Key: Select the key created under step 4 above.
   
   Domains: Enter the domain name(s) the certificate shall cover. In this case, we use “exempel.se”, but you enter the domain(s) that you’re using.
   
   City: Enter the city that should be included in the certificate. You can enter anything you want, as long as you only use A-Z. We enter “Gothenburg” in this case.
   
   State: Since we don’t have states in Sweden, we enter “NA” here (as in “Not Applicable”).
   
   Country: Choose the most fitting one, we select “SE (Sweden)”.
   
   Company: Just as for City above, it doesn’t matter what you type in here, as long as it only consists of A-Z.
   
   You do not have to enter anything in the rest of the fields.
   
   Once you’re done, click Generate to create the certificate.
8. You will now get a confirmation that the certificate is created. Click the link to the installer to install the certificate on the domain(s), since this is not done automatically.
   
   
9. Scroll down until you find Install an SSL Website.
   
   Select the domain you wish to install the certificate on via the dropdown menu next to Domain and click the Autofill by Domain button.
   
   The textfields for Certificate (CRT) and Private Key (KEY) will be autofilled. You will not have to enter anything in the textfield for Certificate Authority Bundle (CABUNDLE), since you do not have one. Finally, click Install Certificate.
10. You will now see a popup box confirming that the certificate has been installed!
    

If you now try surfing towards the https:// version of your website, your browser should warn you that the certificate isn’t trusted – bypass this warning to reach the site.