How do I install a secure certificate?

When you order a new secure certificate or pay for the renewal of an existing one, you will receive an email letting you know the certificate still needs to be installed.

First you will need to log into Direct Admin for your site.

Once in DirectAdmin, go to "Account Manager" and click "SSL Certificates"



Once inside the SSL Certificate area, you'll see many different choices:

  • Let's Encrypt
  • Paste pre-generated
  • Certificate Request
  • Self Signed

You'll want to choose Create a Certificate Request, fill in your company information, and click Save.  It will provide Certificate Request code, copy/paste this into a Notepad, you'll need it for the next step.

Now you need to log into the Nine Planets client area, then go to Services, find your secure certificate there and click on it.  Scroll down to the section listing the Order Status and there will be a Generate Now button, click on that.

In the Input CSR field, you'll paste in the Certificate Request you copied from DirectAdmin.  Set the Web Server to Other, and set the Signature Algorithm to PREFER_SHA2.  Then just fill in your contact info and click the Continue button at the bottom.

On the next screen, select the DNS option for the Authentication Method, then click next.

Now return to DirectAdmin and go to the Account Manager > DNS Management section.  Click Add Record and set the DNS type to TXT.  Copy the Host line from the client area to the Name field in DirectAdmin, and add a period at the end.  Then copy the Target from the client area to the Value field in DirectAdmin, and add a period to the end.  Then click Add.  After a while you'll receive an email with the certificate once the DNS verification process completes.

Once you receive the email with the certificate, return to the SSL Certificates section in DirectAdmin and choose the "Paste a pre-generated certificate and key" section.  The will be automatically filled in, move down to the certificate box at the bottom and replace the certificate code there with the one you were emailed.  If the zip only contains a single .pem, open the file in Notepad and the file with multiple certificates, only copy the first certificate from the file.

Once your certificate is entered, click "Save."

Next, click the "CA Root Certificate" link at the upper right.  In the email with your secure certificate there should also be a zipped file attached.  Download and unzip this file, there should be several certificate files in it.  The email will list what each of these certificates is.  You will want to open the second Intermediate Certificate file (named like SectigoRSADomainValidationSecureServerCA.crt) in a text editor such as Notepad.  Copy and paste the text into the field on the page, then enter a line break and open the Root certificate file (named like AAACertificateServices.crt) and paste the text from that below the other one.  If the zip only contained a single .pem file, copy the last 2 certificates from that file.  Make sure the "Use CA Cert" box is checked, and hit "Save."  After that, you're all set.

 

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

How do I install a Let's Encrypt certificate?

Once you have logged into DirectAdmin, go to "Account Manager" and click "SSL Certificates":...

How do I install a secure certificate using a token?

To install a certificate using a token, you will first need to log into your Direct Admin.  Once...