Step 1: Generate a Private Key
- Login to cPanel.
- Click SSL/TLS Manager > Private Keys (KEY).
- Scroll down near the bottom of the page to the Generate a New Key section.
- Select the desired domain name from the pull-down menu, or type it into the Host field (e.g., www.domain.com).
- Select the key bit-length. We recommend 2048 (2048 is required for EV certificates).
- Click the Generate button to generate the new key.
- A new private key is generated and is stored on the server.
Step 2: Generate a Certificate Signing Request (CSR)
Please follow the instructions below to generate the CSR code in your cPanel account:
- Log into your cPanel account
- Locate and click on SSL/TLS Manager in the Security section:
3. Click on Generate, view, or delete SSL certificate signing requests under the Certificate Signing Requests (CSR) menu:
4.On the next page, locate the option titled Generate a New Certificate Signing Request (CSR). If you select “Generate a New 2048-bit key”, a completely new Private Key will be generated. If the private key was generated separately, please select it from the drop-down.
5.Enter the following information for the CSR code that will be submitted to the Certificate Authority. Please use only alphanumeric characters when filling in the details.
Domains: Enter the fully qualified domain name on which the SSL will be activated (common name). The common name for all Wildcard certificates should be represented with an asterisk in front of the domain (*.example.com). To create your CSR code for multiple domains, enter each domain in a new line.
City:Provide the complete name of your city or locality. Do not use abbreviations.
State:Provide the complete name of your state or region.
Country:Select your country from the drop-down list.
Company:Provide the officially registered name for your business. For Organization and Extended Validation certificates, Certificate Authorities will be verifying the submitted organization. For Domain Validation SSLs, this field will not be listed on the issued certificate (you can use “NA” for Organization when issuing a Domain Validation certificate if you do not have an organization registered).
Company Division:Provide the name of a division or department within the organization indicated above. For Domain Validation certificates, you can enter “NA”.
E-mail:Enter your e-mail address. The e-mail used for CSR generation will not be used for domain control validation or for reception of the issued certificate. It can be left blank.
Passphrase: It was designed to be another verification parameter to confirm the identity of a certificate requester. At the moment, this field is considered obsolete. Feel free to leave it empty.
Description:Add some keywords to easily locate a particular CSR in the list.
6.Click on the Generate button.
7.The next page will show the newly generated CSR code. You can now use the Encoded Certificate Signing Request to activate the certificate purchased with Namecheap or any other certificate provider. Please include -----BEGIN CERTIFICATE REQUEST----- and -----END CERTIFICATE REQUEST----- when submitting the CSR code for SSL activation.