Website security is a top priority for any website owner. The SSL/TLS Status tool in cPanel allows website owners to monitor SSL coverage, renew certificates, troubleshoot issues, and ensure that all domains and subdomains are protected with HTTPS encryption. Managing SSL certificates through this tool is essential to maintaining a secure, trusted website that search engines also favor.

 

1. Accessing the SSL/TLS Status Tool in cPanel

To begin managing your SSL certificates:

  1. Log in to cPanel using your hosting credentials.

  2. Navigate to the "Security" section.



  3. Click on "SSL/TLS Status" to open the management interface.

  4. The interface lists all domains and subdomains associated with your hosting account.

This interface provides a quick overview of your SSL certificates, including their status and expiration date.

 

2. Understanding SSL/TLS Status Icons

The SSL/TLS Status page uses different icons to indicate the SSL coverage of each domain:

  • Green Padlock  – The SSL certificate is active, and HTTPS is working properly.
  • Yellow Warning  – The certificate is installed but may have issues, such as an incomplete certificate chain.
  • Red "X"  – No valid SSL certificate is installed, or the certificate has expired.

If a domain or subdomain is marked with a red "X," it means the connection is not secure and requires immediate attention. You should either run AutoSSL or install a new certificate manually.

 

3. Checking SSL Certificate Expiration Dates

  • The SSL/TLS Status page displays the expiration date of each certificate.
  • It’s essential to renew certificates before they expire to avoid browser security warnings and service disruptions.
  • If an SSL certificate is close to expiration, you can renew certificates proactively using AutoSSL or through manual installation.

 

4. Enabling AutoSSL for Automatic SSL Management

Many hosting providers offer AutoSSL, a feature that automatically issues and renews free SSL certificates (such as Let’s Encrypt) for eligible domains. To enable or renew AutoSSL:

  1. Open SSL/TLS Status in cPanel.
  2. At the top of the page, click Run AutoSSL to attempt an automatic renewal.
  3. The system will check for any eligible domains and install or renew SSL certificates as needed. 

Note: Domains must resolve correctly to your server via DNS for AutoSSL to work.

If AutoSSL fails for a particular domain, additional troubleshooting may be required.

 

5. Manually Renewing or Installing an SSL Certificate

If AutoSSL is unavailable or fails, you may need to manually renew or install an SSL certificate:

  1. Purchase or Renew an SSL Certificate from your hosting provider or an SSL certificate authority.
  2. Collect the SSL certificate files: certificate (CRT), private key, and CA bundle from your certificate provider.
  3. In cPanel, navigate to "SSL/TLS" > "Manage SSL Sites".
  4. Select the domain, paste the SSL details, and click "Install Certificate".
  5. Verify that the SSL is active by visiting your website and checking for the HTTPS padlock.

Note: If you use an incorrect or mismatched key, the certificate won’t validate.

 

6. Forcing HTTPS for All Website Traffic

Once an SSL certificate is installed, ensure all visitors are directed to the secure HTTPS version of your site.

Before forcing HTTPS, ensure the SSL certificate is active and valid, or users may be locked out with security errors.

  • In cPanel, go to Domains and enable Force HTTPS Redirect for each domain.
  • If your server uses Apache, you can manually enforce HTTPS by adding the following to your .htaccess file:
    RewriteEngine On
    RewriteCond %{HTTPS} off
    RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

  • For WordPress users, update the WordPress Address (URL) and Site Address (URL) under Settings > General in the WordPress dashboard to use https:// instead of http://.

 

7. Troubleshooting Common SSL Issues

If you experience SSL errors, use the SSL/TLS Status tool to diagnose and resolve issues. Common problems include:

  • SSL Not Covering a Domain – Ensure the domain is correctly pointed to the server via DNS settings.
  • Expired SSL Certificate – Renew the SSL certificate through AutoSSL or manual installation.
  • Mixed Content Warning – Ensure all site assets (images, scripts) load over HTTPS instead of HTTP.
  • Certificate Mismatch Error – Remove outdated SSL certificates and install the correct one in Manage SSL Sites.
  • Clear browser cache when testing changes to avoid false error messages.

For further debugging, use online tools like SSL Labs' SSL Test to check SSL strength and configuration.

Was this answer helpful? 0 Users Found This Useful (0 Votes)

Most Popular Articles

Installing WordPress with cPanel

Installing WordPress with cPanel: Comprehensive Guide cPanel offers multiple ways to install...
cPGuard: the ultimate guide to securing your website

cpGuard is a comprehensive security system designed to protect websites hosted on cPanel. It...
How to login to cPanel

cPanel is a fantastic tool for managing your websites, but only if you can access it! This lesson...
The cPanel layout

cPanel offers a powerful control panel that gives you complete access to your website’s backend...
Why website backups are essential and how to automate them?

At Lanetti, we emphasize the importance of website backups to protect businesses from data loss,...