Page tree
Skip to end of metadata
Go to start of metadata

This document is for a previous release of cPanel & WHM. To view our latest documentation, visit our Home page.

For cPanel & WHM 11.48

(Home >> SSL/TLS >> Purchase and Install an SSL Certificate)


This interface allows you to purchase a Trustwave® SSL certificate directly from the WHM interface. Currently, Trustwave is the only  certificate authority from which you can purchase an SSL certificate within the WHM interface.



In order to use the SSL protocol, you must have either an SNI-enabled server or a dedicated (unshared) IP address.


These steps only install a temporary self-signed SSL certificate . To complete the process, follow the instructions in the sections below.

The following steps describe how to purchase a Trustwave-signed certificate and install a self-signed certificate. After you complete the following steps, Trustwave generates and sends you a Trustwave-signed certificate via email.

To purchase a certificate, perform the following steps:

  1. Click Click here to purchase from Trustwave.
  2. Enter the requested contact information and click Continue. WHM will display the private key and certificate signing request (CSR).
  3. Copy and paste the key and CSR into a safe, private file and click Continue.
  4. Enter the requested payment information and click Pay.
  5. On the following interface, click Continue if Trustwave approved your order.
  6. On the Process SSL Certificate Request interface, click Install Certificate. This action opens WHM's Install an SSL Certificate on a Domain interface (Home >> SSL/TLS >> Install an SSL Certificate on the Domain).
  7. Enter the domain for which Trustwave issued the certificate in the Domain text box and click Submit.


    • The system automatically populates the text boxes with the required data when you enter the domain.
    • If the text boxes do not automatically populate with the certificate and key, confirm your domain, user, and IP ad dress entries or click the appropriate Fetch buttons.

Authenticate your domain with Trustwave

You must authenticate your domain before you can receive your Trustwave-signed certificate. Trustwave will send you an email with authentication instructions, and you must reply to this email with the appropriate information.

To authenticate your domain with Trustwave, perform the following steps:

  1. Create the cert.html file in a publicly accessible directory for the domain to protect with the SSL certificate.


    The cert.html file must contain the following phrase:

    Trustwave SSL Validation Page.
  2. Reply to the email with the cert.html file's location, for example:

After you authenticate your domain, Trustwave generates a signed-certificate and sends it to you at the email address that you specified.

Install the Trustwave-signed certificate

After you authenticate your domain, Trustwave will send you a verified, third-party signed certificate to install for your domain. When you receive the new certificate from Trustwave, change the SSL certificate for the domain with WHM's Install an SSL Certificate on a Domain interface (Home >> SSL/TLS >> Install an SSL Certificate on the Domain).


  • If you lose site data and need to restore your site from a backup, the system stores your Trustwave authentication data in the /root/.trustwavereqs file.
  • If you need additional assistance, call Trustwave customer service at 1-866-775-2378.


Renew a certificate

To renew a Trustwave certificate through WHM, follow the steps in the Purchase a certificate section and replace the old certificate.

In most cases, you will not need to generate a new private key or CSR. The system stores private keys and CSRs in WHM's SSL Storage Manager interface (Home >> SSL/TLS >> SSL Storage Manager).

We currently do not offer auto-renewal of Trustwave certificates that you purchase through WHM.