Obtaining a certificate from a trusted SSL provider requires a Certificate Signing Request (CSR). CSR is also needed for generating self-signed SSL certificates. Follow this tutorial to generate a CSR.

**1.** Log in to your cPanel account.

**2.** In the **Security** section, click on **SSL/TLS**.

**3.** Under Certificate Signing Request, click on **Generate, View or Delete CSR** Link.

**4.** Scroll down and enter the following details:

- **Domains:** Enter your domain name, such as www.example.com (domains with www cover both non-www and www domains)

- **City:** Your city name.

- **State:** Your state name.

- **Country:** Choose your country name from the drop-down menu.

- **Company:** Your Company name.

- **Company Division:** Name of your company division.

- **Email:** Enter your email address.

- **Passphrase:** Enter a passphrase (maximum 20 characters) and do not use special characters.

- **Description:** You can leave it blank.

**5.** Finally, click on **Generate**. Copy the generated CSR code and save it to your computer. You can use your CSR while purchasing an SSL or reissuing an SSL in the future.

You have generated a Certificate Signing Request in cPanel, and you can now use it to get an SSL certificate for your domain.

Have you generated a Certificate Signing Request (CSR) from cPanel but lost it? Then, you can retrieve it. Follow this tutorial only if you have previously generated a CSR from cPanel.

**1.** Log in to your cPanel account.

**2.** In the **Security** section, click on **SSL/TLS**.

**3.** Under the Certificate Signing Request, click on **Generate, View or Delete CSR** link.

**4.** Under **Certificate Signing Requests on Server**, you can see previously generated CSR.

**5.** Click on **Edit**, which is located under the **Action** option.

**6.** Copy the CSR code, located under the **Encoded CSR**. Please, copy it from/to:

`-----BEGIN CERTIFICATE REQUEST----- `

`to `

`-----END CERTIFICATE REQUEST-----`

You have retrieved your Certificate Signing Request (CSR) from cPanel. You can now use it to request or reissue an SSL certificate for your domain.

You can remove the CSR code, which is no longer needed. Please, keep a backup of the CSR code for the active SSL on your computer.

**1.** Log in to your cPanel account.

**2.** In the **Security** section, click on **SSL/TLS**.

**3.** Under Certificate Signing Request, click on **Generate, View or Delete CSR** link.

**4.** Under **Certificate Signing Requests on Server**, you can see previously generated CSR.

**5.** Click on **Delete**, located under the **Action** option. Choose **Delete** again to confirm.

The CSR code will be removed and no longer stored on the server.

cPanel can automatically install an SSL on your domain within a few hours. However, even after 24 hours, if an SSL is not installed on your domain, first check the last log of the AutoSSL from cPanel > SSL/TLS Status > Certificate Status.

If it shows any errors, try to fix them or open a ticket with us. If it does not show errors, it means AutoSSL did not automatically include your domain. It will help if you force cPanel to run an AutoSSL on your domain and install an SSL Certificate. You can run AutoSSL on your domain in the following way:

**1.** Log in to your cPanel account.

**2.** In the **Security** section, click on **SSL/TLS Status**.

**3.** Click on **Run AutoSSL**. It should show a success or error message.

If it shows a success message, the SSL will be automatically installed on your domain within the next few hours. If it displays an error, then check it and send that message to us so we can resolve this for you.

**Note:** SSL installation is fully automated. Sometimes, AutoSSL takes up to 24 hours to verify the domain.

You can include or exclude your domain from AutoSSL.

If your domain is newly-created, wait a few hours for the cPanel to automatically install an SSL on your domain. You can check the last log of AutoSSL from cPanel > SSL/TLS Status > Certificate Status.

**1.** Log in to your cPanel account.

**2.** In the **Security **section, click on **SSL/TLS Status**.

**3.** Under **Domain**, choose the domain you want to include. Then click on "**Include x domain(s) during AutoSSL**". Selected domains/sub-domains will be included in AutoSSL.

### How to exclude a domain from AutoSSL?

**1.** Under **Domain**, check-mark the domains you want to exclude and click "**Exclude X domains during AutoSSL**." Selected domains/subdomains will be excluded from AutoSSL.

**Note:** You can only exclude domains that you previously included in AutoSSL.