In this article, you will learn how to secure a Plesk-managed website with an SSL certificate.
To set up an SSL certificate in Plesk, you need to rename the file extension of the SSL certificate and the intermediate certificate. Then, add the SSL certificate to the domain and connect the website to your certificate.
You have the private key, the SSL certificate (public key), and the intermediate certificate. Downloading the SSL Certificate and Intermediate Certificate
You have finished setting up your domain in Plesk.
You have enabled the Power User view in Plesk.
Renaming the File Extension of the SSL Certificate and the Intermediate Certificate
In order to upload and use the SSL certificate in Plesk, you need to rename the file extension of the SSL certificate and the intermediate certificate. To do this, proceed as follows:
Open the Windows File Explorer.
Click View in the menu at the top.
Make sure that the File name extensions option is enabled.
Open the folder that contains the SSL Certificate and the Intermediate Certificate.
Right-click the SSL Certificate.
Replace the .cer file extension with the .crt file extension.
The following message may appear:
If you change the file name extension, the file may become unusable. Do you still want to change it?
Repeat this process with the intermediate certificate.
Under Dashboard, in the Security section, click SSL/TLS Certificates.
The SSL/TLS Certificate for [domain name] page is displayed.
In the area on the right, click Advanced Settings.
Click Add SSL/TLS Certificate.
The Add SSL/TLS Certificate page displays.
Give the certificate a name (any name).
Go to the Upload Certificate Files section and select the Private Key, Certificate and CA Certificate (here the Intermediate certificate) files on your computer.
Click Upload Certificate.
Go to the Security section and make the following settings:
Enable SSL/TLS support.
Enable the Permanent SEO-safe 301 redirect from HTTP to HTTPS option.
In the Certificate area, select your SSL certificate.
Your website is now accessible via https (Example: https://yourdomain.com).