Setting up your cPanel website with Cloudflare SSL

and published
install cloudflare ssl in cpanel

In this tutorial, we will cover the necessary steps to establishing a secure connection between Cloudflare and your cPanel hosting account. This guide does not cover how to enforce SSL with Cloudflare, updating your WordPress Site Address URL or fixing mixed content issues.

How to create a Cloudflare SSL Certificate for cPanel

  1. Login to Cloudflare
  2. Select your site using the dropdown menu found in the upper left corner
  3. Click the Crypto icon at the top of the screen
  4. Scroll down a little until you get to the Origin Certificates
  5. Click Create Certificate
  6. The options here you want are:
    1. Let Cloudflare generate a private key and a CSR
    2. Private key type: RSA
    3. Hostnames should be:
      • *
    4. Certificate Validity: 15 years or shorter if you like
    5. Click next
  7. Cloudflare should have now generated your private key and server-side SSL certificate (Origin Certificate) Ensure the key format is set to PEM (Default)
    1. Copy the Origin Certificate to notepad, you will need this in a moment
    2. Copy the private key to notepad, you will need this in just a moment
    3. Web Server for installation should be set Apache httpd
  8. Now proceed to the next panel to install what you just created by Cloudflare in cPanel

How to install your Cloudflare SSL Certificate in cPanel

Please note that these cPanel directions are made using the ‘basic’ theme style and not the ‘retro’, switching the style will allow you to follow these steps easier.

  1. Login to cPanel
  2. Scroll down to the security section and click SSL/TLS
  3. Private Keys (KEY)
    1. Click the hyperlink: Generate, view, upload, or delete your private keys
    2. Scroll down and past Generate a New Private Key until you reach Upload a New Private Key
    3. Refer to your notepad document that you made earlier, copy the private key and paste it underneath “Paste the key into the following text box”
    4. Adding a description below can help you identify this SSL install later on
    5. Click Save
    6. Scroll to the bottom of the page and click Return to the SSL manager
  4. Certificates (CRT)
    1. Click the hyperlink: Generate, view, upload, or delete SSL certificates
    2. Scroll down to Upload a New Certificate and once again refer to your notepad document and this time copy and paste the Origin Certificate into the box below “Paste the certificate into the following text box”
    3. Add a description if you like to help identify this install, esepically if you know that you have previous used other SSL certs in the past
    4. Click Save Certificate
    5. Scroll to the bottom of the page and click Return to the SSL manager
  5. Install and Manage SSL for your site (HTTPS)
    1. Click the hyperlink Manage SSL sites
    2. Scroll down until you find “Install an SSL Website”
    3. Click Browse Certificates and radio check the one that you uploaded a few moments ago and then click use Certificate
    4. You may get a warning “The certificate does not match your selected domain.” But don’t worry, the next step will resolve this issue
    5. In the dropdown select list, choose your domain which will look something like (, the error warning message in the previous step should now disappear
    6. You should now notice that the box underneath Certificate Authority Bundle: (CABUNDLE) is blank, for this you need to add the Cloudflare Origin CA — RSA Root Certificate. You can find the CA Bundle below.
      -----BEGIN CERTIFICATE-----
      -----END CERTIFICATE-----

    7. Make sure the checkbox Enable SNI for Mail Services is checked, this option is important for sites that use contact forms or other web design assets that use the sendmail feature.
    8. Finally click install and congratulations, you have now installed you Cloudflare SSL TLS cert to cPanel and the connection between your hosting package and Cloudare is now encrypted.

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>