Difference between revisions of "Secure Your Sites"

From XMission Wiki
Jump to: navigation, search
(Assign your SSL Certificate)
Line 1: Line 1:
==Plesk Shared Hosting: Securing Your Sites==
+
=Plesk Shared Hosting: Securing Your Sites=
  
=== Creating CSR ===
+
== Creating CSR ==
SSL certificates secure transfer of sensitive data from visitors to your website, and also verify the site identity. Below you can find two lists of SSL certificates: the first one showing certificates that you use for securing your websites and the other one showing certificates that you purchased.
+
SSL certificates secure transfer of sensitive data from visitors to your website, and also verify the site identity. Below you can find two lists of SSL certificates. The first one showing certificates that you use for securing your websites and the other one showing certificates that you purchased.
  
 
+
* From the [https://hosting.xmission.com Shared Hosting control panel] click on "'''Websites and Domains'''".
* From the Hosting control panel Click on Websites and Domains - if you just logged in you are already there.
 
 
[[File:Plesk_tabs_new.png]]
 
[[File:Plesk_tabs_new.png]]
  
 
+
* Find the domain you wish to use your SSL Certificate on. If it doesn’t show the columns of options, select the “'''Show More'''” option.
* Find the domain you wish to use your SSL Certificate for and click on the little down arrow to see more options.
+
* Next choose "'''SSL/TLS Certificates'''".
* Next choose '''Secure Your Sites'''
 
 
[[File:SharedHosting-SSL-00.png|600px]]
 
[[File:SharedHosting-SSL-00.png|600px]]
  
 
* Plesk will notify you of your websites current Security Status.
 
* Plesk will notify you of your websites current Security Status.
 +
* Select “'''Advanced Settings'''” to see individual certificates or to generate one.
 
[[File:Plesk_Secure_Site2.png|600px]]
 
[[File:Plesk_Secure_Site2.png|600px]]
  
* Next choose '''Add SSL Certificate'''
+
* Next choose "'''Add SSL Certificate'''".
 
[[File:SharedHosting-SSL-02.png|600xpx]]
 
[[File:SharedHosting-SSL-02.png|600xpx]]
  
 +
* Next fill in the form to generate a CSR then click "'''Request'''".
 +
[[File:SharedHosting-SSL-03.png|600px]]
  
* Next fill in the form to generate a CSR then hit Request
+
: '''Certificate Name''': This will help you identify this certificate in the repository.
[[File:SharedHosting-SSL-03.png|600px]]
+
: '''Country''': This is defaulted to United States.
* Certificate Name: ''This will help you identify this certificate in the repository.''
+
: '''State or province''': The state in which your company resides.
* Country: ''This is defaulted to United States''
+
: '''Location(city)''': The city in which your company resides.
* State or province: ''The state in which your company resides''
+
: '''Organization Name''': This can be your company name.
* Location(city): ''The city in which your company resides''
+
: '''Organization Department''': Website, IT or variations, should not exceed 64 characters.
* Organization Name: ''This can be your company name''
+
: '''Domain name''': The domain name you are looking to secure, ideally listed as the [https://www.cloudns.net/blog/fqdn-fully-qualified-domain-name/ Fully Qualified Domain Name (FQDN)]. Example: your-domain.com or www.your-domain.com.
* Organization Department: ''Website, IT or variations, should not exceed 64 characters''
+
: '''Email''': The website administrator's email address.
* Domain name: '' The domain name for which you want to purchase an SSL certificate. This should be a fully qualified domain name. Example: your-domain.com or www.your-domain.com''
+
 
* Email: ''The website administrator's email address''
+
:: '''NOTE:''' when ordering an SSL Certificate the validation email must match your domain with the following conditions:
** '''NOTE''' when ordering an SSL Certificate the validation email must match your domain with the following conditions
+
:: '''admin'''@<domain.tld>
**admin@<domain.tld>
+
:: '''administrator'''@<domain.tld>
**administrator@<domain.tld>
+
:: '''hostmaster'''@<domain.tld>
**hostmaster@<domain.tld>
+
:: '''webmaster'''@<domain.tld>
**webmaster@<domain.tld>
+
:: '''postmaster'''@<domain.tld>
**postmaster@<domain.tld>
 
  
 
* After you fill out the above form it will generate a '''CSR''' this is what you need to purchase a SSL Certificate.
 
* After you fill out the above form it will generate a '''CSR''' this is what you need to purchase a SSL Certificate.
* Confirmation that your CSR was created
+
* Confirmation that your CSR was created:
 
[[File:SharedHosting-SSL-04.png]]
 
[[File:SharedHosting-SSL-04.png]]
  
=== Viewing your CSR ===
+
== Viewing your CSR ==
  
* Click on the Certificate name to view your CSR
+
* Click on the Certificate name to view your CSR.
 
[[File:SharedHosting-SSL-05.png|600px]]
 
[[File:SharedHosting-SSL-05.png|600px]]
  
Line 51: Line 51:
 
== Installing SSL Certificate ==
 
== Installing SSL Certificate ==
  
* If you ordered your SSL Cert with XMission, you will receive an email to approve the creating of the certificate. Once you approve the process, another email will be sent to you with your Certificate. An example email should look like:
+
If you ordered your SSL Cert with XMission, you will receive an email to approve the creation of the certificate. Once you approve the process, another email will be sent to you with your Certificate.
  
 +
* An example email should look like:
 
[[File:XMission_SSL_Email.png|600px]]
 
[[File:XMission_SSL_Email.png|600px]]
  
* Log in to your Control Panel  
+
* Log in to your [https://hosting.xmission.com Control Panel].
* Find the domain you wish to secure and click on the little down arrow to expand the options
+
* Find the domain you wish to secure and click on the little down arrow to expand the options.
* Choose '''Secure Your Sites'''
+
* Choose "'''Secure Your Sites'''".
* Click on the Certificate Name that you created earlier
+
* Click on the Certificate Name that you created earlier.
 
* Your Certificate Completed Email should contain a Certificate and Intermediate Chain (CA Chain). You will need to copy the Certificate and Chain from the email you received past it in the provided boxes.  
 
* Your Certificate Completed Email should contain a Certificate and Intermediate Chain (CA Chain). You will need to copy the Certificate and Chain from the email you received past it in the provided boxes.  
 
 
[[File:SSL_Email_Cert.png|600px]]
 
[[File:SSL_Email_Cert.png|600px]]
  
;* Be sure to include the "-----Begin Certificate-----" and "-----End Certificate-----"
+
;* Be sure to include the "-----Begin Certificate-----" and "-----End Certificate-----" Be careful of having extras spaces or extra lines when copying them in. They can cause errors messages when you attempt to save.
 
 
  
 
[[File:SharedHosting-SSL-07.png|600px]]
 
[[File:SharedHosting-SSL-07.png|600px]]
  
=== Assign your SSL Certificate ===
+
== Assign your SSL Certificate ==
  
* Now you need to assign the certificate to your site. To do that, from the menu choose '''Websites and Domains'''
+
* Now you need to assign the certificate to your site. To do that, from the menu choose "'''Websites and Domains'''".
* Find the domain you are add the SSL Certificate for and choose '''Hosting Settings'''
+
* Find the domain you are add the SSL Certificate for and choose "'''Hosting Settings'''".
 
[[File:SharedHosting-SSL-08.png|600px]]
 
[[File:SharedHosting-SSL-08.png|600px]]
  
* Then check the box for SSL Support and select your certificate
+
* Then check the box for SSL Support and select your certificate.
 
[[File:SharedHosting-SSL-09.png|600px]]
 
[[File:SharedHosting-SSL-09.png|600px]]
  
* Click '''OK''' at the bottom and that is it.
+
* '''Optional''': Permanent SEO-safe 301 redirect from HTTP to HTTPS. This option makes it so your site can only be viewed on the secured page. If this isn’t selected, customers can still see the non-secure page unless the website is hard coded to perform this same function.
 +
 
 +
* Click "'''OK'''" at the bottom.
 +
 
 +
After saving the changes, related services for the website will be automatically restarted. Within 1-3 minutes the new SSL certificate should be serving and displaying properly if you refresh the page.
  
 
{{:Shared_Hosting}}
 
{{:Shared_Hosting}}
 
[[Category:Shared Hosting|Secure Your Sites]]
 
[[Category:Shared Hosting|Secure Your Sites]]

Revision as of 12:46, 13 July 2020

Plesk Shared Hosting: Securing Your Sites

Creating CSR

SSL certificates secure transfer of sensitive data from visitors to your website, and also verify the site identity. Below you can find two lists of SSL certificates. The first one showing certificates that you use for securing your websites and the other one showing certificates that you purchased.

Plesk tabs new.png

  • Find the domain you wish to use your SSL Certificate on. If it doesn’t show the columns of options, select the “Show More” option.
  • Next choose "SSL/TLS Certificates".

SharedHosting-SSL-00.png

  • Plesk will notify you of your websites current Security Status.
  • Select “Advanced Settings” to see individual certificates or to generate one.

Plesk Secure Site2.png

  • Next choose "Add SSL Certificate".

SharedHosting-SSL-02.png

  • Next fill in the form to generate a CSR then click "Request".

SharedHosting-SSL-03.png

Certificate Name: This will help you identify this certificate in the repository.
Country: This is defaulted to United States.
State or province: The state in which your company resides.
Location(city): The city in which your company resides.
Organization Name: This can be your company name.
Organization Department: Website, IT or variations, should not exceed 64 characters.
Domain name: The domain name you are looking to secure, ideally listed as the Fully Qualified Domain Name (FQDN). Example: your-domain.com or www.your-domain.com.
Email: The website administrator's email address.
NOTE: when ordering an SSL Certificate the validation email must match your domain with the following conditions:
admin@<domain.tld>
administrator@<domain.tld>
hostmaster@<domain.tld>
webmaster@<domain.tld>
postmaster@<domain.tld>
  • After you fill out the above form it will generate a CSR this is what you need to purchase a SSL Certificate.
  • Confirmation that your CSR was created:

SharedHosting-SSL-04.png

Viewing your CSR

  • Click on the Certificate name to view your CSR.

SharedHosting-SSL-05.png

  • Locate the CSR section on the page, and copy the text that starts with the line -----BEGIN CERTIFICATE REQUEST----- and ends with the line -----END CERTIFICATE REQUEST----- to the clipboard.

SharedHosting-SSL-06.png

Installing SSL Certificate

If you ordered your SSL Cert with XMission, you will receive an email to approve the creation of the certificate. Once you approve the process, another email will be sent to you with your Certificate.

  • An example email should look like:

XMission SSL Email.png

  • Log in to your Control Panel.
  • Find the domain you wish to secure and click on the little down arrow to expand the options.
  • Choose "Secure Your Sites".
  • Click on the Certificate Name that you created earlier.
  • Your Certificate Completed Email should contain a Certificate and Intermediate Chain (CA Chain). You will need to copy the Certificate and Chain from the email you received past it in the provided boxes.

SSL Email Cert.png

  • Be sure to include the "-----Begin Certificate-----" and "-----End Certificate-----" Be careful of having extras spaces or extra lines when copying them in. They can cause errors messages when you attempt to save.

SharedHosting-SSL-07.png

Assign your SSL Certificate

  • Now you need to assign the certificate to your site. To do that, from the menu choose "Websites and Domains".
  • Find the domain you are add the SSL Certificate for and choose "Hosting Settings".

SharedHosting-SSL-08.png

  • Then check the box for SSL Support and select your certificate.

SharedHosting-SSL-09.png

  • Optional: Permanent SEO-safe 301 redirect from HTTP to HTTPS. This option makes it so your site can only be viewed on the secured page. If this isn’t selected, customers can still see the non-secure page unless the website is hard coded to perform this same function.
  • Click "OK" at the bottom.

After saving the changes, related services for the website will be automatically restarted. Within 1-3 minutes the new SSL certificate should be serving and displaying properly if you refresh the page.


Additional Development Help

Applications

Domain Management