JavaScript Required.
We're sorry, but Pega7 doesn't work without JavaScript enabled. Please enable and refresh.
<p><a id="top"></a></p> <style type="text/css">p, ol, ul, li, .alert-warning, .alert-primary { font-family: Arial, Helvetica, sans-serif; font-size: 14px; } .alert-primary{color:#084298;font-family:Arial,Helvetica,sans-serif;font-size:14px;} .alert-warning{color:#664d03;font-family:Arial,Helvetica,sans-serif;font-size:14px;} .alert-info{color:#055160;font-family:Arial,Helvetica,sans-serif;font-size:14px;} .table,th,td{font-family:Arial,Helvetica,sans-serif;font-size:14px;} .table-hover tbody tr:hover td{background-color:LightBlue;} </style> <p>An SSL (Secure Sockets Layer) certificate shows visitors that your website is secure. It protects online transactions and data transfers by encrypting data. Your SSL certificate will be issued using the domain name you use for your website. Follow the steps below to validate and issue your SSL certificate after purchase.</p> <p>In this article, we will discuss:</p> <ul> <li><a href="#ConfigureSSL">How to Configure SSL</a></li> <li><a href="#UpdateCNAME">How to Update CNAME Records for Validation</a></li> <li><a href="#SSLTypes">Types of SSL Certificates</a></li> <li><a href="#Review">Review</a></li> </ul> <h2><a id="ConfigureSSL"></a><strong>How to Configure SSL</strong></h2> <div class="alert alert-info"><strong>Note:</strong> DV (Domain Validation) certificates will go through a 3-step configuration process post-purchase. OV (Organization Validation) and EV (Extended Validation) certificates require additional steps, which will be explained after the 3-step configuration process.</div> <div class="accordion accordion-flush" id="accordionFlush"> <div class="accordion-item"> <h2 class="accordion-header" id="flush-headingOne"><button aria-controls="flush-collapseOne" aria-expanded="false" class="accordion-button collapsed" data-bs-target="#flush-collapseOne" data-bs-toggle="collapse" type="button">Step 1: Configure Domain Name</button></h2> <div aria-labelledby="flush-headingOne" class="accordion-collapse collapse" data-bs-parent="#accordionFlush" id="flush-collapseOne"> <div class="accordion-body"> <p>After you have purchased an SSL certificate, follow the steps below:</p> <ol> <li>Log in to your Account Manager via <a href="https://www.networksolutions.com/my-account/login" target="_blank">https://www.networksolutions.com/my-account/login</a>.</li> <li>Enter your User ID and Password.</li> <li>Click <strong>Security</strong> on the left navigation menu.</li> </ol> <p style="margin-left: 40px;"><img alt="Security" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Security_Tab.png" style="max-width: 100%;" /><br /> </p> <ol start="4"> <li>If you have more than one SSL certificate in your account, choose a package name and click the vertical ellipsis under <strong>Actions</strong> to <strong>Manage</strong> or see the <strong>Details</strong> of the product.</li> </ol> <p style="margin-left: 40px;"><img alt="Manage SSL" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Security_Manage_SSL_Button.png" style="max-width: 100%;" /><br /> </p> <ol start="5"> <li>Select the SSL you want to manage.</li> </ol> <p style="margin-left: 40px;"><img alt="Select SSL to Manage" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Security_ManageSSL_Select_SSL.png" style="max-width: 100%;" /></p> <div class="alert alert-primary" style="margin-left: 40px;"><strong>Note:</strong> The SSL Control Panel will open in a new browser window. If you have pop-up blocking activated in your browser, please modify your browser settings.</div> <ol start="6"> <li>Assign a domain name for your SSL Certificate.</li> </ol> <p style="margin-left: 40px;"><img alt="Assign Domain" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Assign_Domain_for_SSL.png" style="max-width: 100%;" /></p> <div class="alert alert-warning" style="margin-left: 40px;"><strong>Important:</strong> Make sure that you issue your SSL to the exact version of the domain or subdomain you want to assign it to (e.g., example.com, <a href="http://www.example.com" target="_blank">www.example.com</a>, or store.example.com).</div> <ol start="7"> <li>Once you have entered the domain name, re-enter the domain name one last time.</li> </ol> <div class="alert alert-warning" style="margin-left: 40px;"><strong>Important:</strong> You will not be able to change the domain once it has been assigned.</div> <ol start="8"> <li>Click <strong>Continue</strong>.</li> </ol> <p>The system will perform a verification check to see if the domain entered is assigned as a domain pointer to a hosting package managed by Network Solutions. If Network Solutions does not host your website, you will be prompted to choose a server type and input a CSR (Certificate Signing Request).</p> <p>If the domain is pointed to our hosting, the server type is determined by the package it is assigned to (Windows- IIS or UNIX- Apache). Additionally, the CSR for your shared hosting package is generated automatically on the back end and attached to the validation request so the certificate files can be created post-validation.</p> </div> </div> </div> <div class="accordion-item"> <h2 class="accordion-header" id="flush-headingTwo"><button aria-controls="flush-collapseTwo" aria-expanded="false" class="accordion-button collapsed" data-bs-target="#flush-collapseTwo" data-bs-toggle="collapse" type="button">Step 2: Provide CSR</button></h2> <div aria-labelledby="flush-headingTwo" class="accordion-collapse collapse" data-bs-parent="#accordionFlush" id="flush-collapseTwo"> <div class="accordion-body"> <p>CSR is the key to the SSL certificate. It houses everything about the server, organization, domain, private key, and encryption strength related to the SSL. It is the basis for how the SSL installation files are created and what dictates the handshake to make the secure connection through the browser session.</p> <p>If a 3rd party hosting provider hosts your website, you are responsible for providing the CSR for validation. If Network Solutions hosts your website, this step is already taken care of on the back end during the configuration process.</p> <p>Follow the steps below if your website is not hosted by Network Solutions but you have purchased our SSL product:</p> <ol> <li>Select the server software type provided by your current hosting provider.</li> <li>Enter the CSR your current hosting provider provided into the <strong>Enter CSR From Web Host</strong> field.</li> <li>Click the <strong>Continue</strong> button.</li> </ol> <p style="margin-left: 40px;"><img alt="Provide CSR" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Provide_CSR_for_SSL.png" style="max-width: 100%;" /></p> <p style="margin-left: 40px;"> </p> </div> </div> </div> <div class="accordion-item"> <h2 class="accordion-header" id="flush-headingThree"><button aria-controls="flush-collapseThree" aria-expanded="false" class="accordion-button collapsed" data-bs-target="#flush-collapseThree" data-bs-toggle="collapse" type="button">Step 3: Provide Validation Information</button></h2> <div aria-labelledby="flush-headingThree" class="accordion-collapse collapse" data-bs-parent="#accordionFlush" id="flush-collapseThree"> <div class="accordion-body"> <p>Now that you have assigned your domain and provided your CSR, select a validation email address to receive the validation code and confirmation URL.</p> <p><img alt="Submit validation information" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Submit_Validation_Info_for_SSL.png" style="max-width: 100%;" /></p> <div class="alert alert-warning"><strong>Important:</strong> If you have enabled Private Domain Registration on your domain, we do not advise you to disable it to complete the validation process. Disabling Private Domain Registration will expose your contact information in WHOIS. Other methods of validation outside of email verification are available. You must configure email validation first, and the support agent can change the method.</div> <p> </p> <h3><strong>Other Validation Methods</strong></h3> <p><strong>HTTP/.txt file</strong>: When Network Solutions manages all certificate components (Domain, Hosting, and SSL), we will automatically create a .txt file based on the MD5hash and SHA3 components of the CSR and upload it to the webspace via FTP. This method allows this file to be verified and expedites SSL issuance (You can also create this manually and upload it).</p> <p><strong>CNAME</strong> - This method is becoming the preferred method due to the challenges with email. We will provide you with a CNAME to be added to your DNS Zone provider. Our support agent can assist you in updating your DNS records if Network Solutions hosts your website. You or our support agent can add the CNAME via the Account Manager for verification and SSL issuance. Please see <a href="#UpdateCNAME">How to Update CNAME Records for Validation</a>.</p> <p> </p> <h3><strong>Completing Validation Next Steps for Domain Validation Certificates</strong></h3> <p><strong>Validating Email</strong></p> <p>After completing the steps, you will receive an email containing a secure link to activate validation to generate the SSL and issue the files. Clicking the link will notify the Validation team within an hour that the confirmation is complete.</p> <p><strong>Validating via CNAME</strong></p> <p>A special unique CNAME is generated for each SSL validation request. Our support agent will provide you with the CNAME and inform you of the next steps. No email confirmation is needed to validate via CNAME. It may take 1-2 hours for the Validation team to confirm this. Please see <a href="#UpdateCNAME">How to Update CNAME Records for Validation</a>.</p> <p><strong>Validating via HTTP TXT File</strong></p> <p>A special unique MD5 Hash Code is generated for each SSL validation request. Our support agent will take this information and create a .txt file to upload into your FTP site files. No email confirmation is needed to validate via HTTP. It may take 1-2 hours for the Validation team to confirm this.</p> <p> </p> <h3><strong>Additional Steps for Organization, Extended Validation, and Wildcard SSL</strong></h3> <p>In addition to the steps listed for Domain Validation certificates, additional information will be required for OV and EV certificates. OV and EV will require an additional form to be filled out, including details associated with the business or organization, which will be included in the files issued for the SSL. All fields are required unless specifically noted.</p> <h4><strong>Completing Validation Next Steps OV, EV, or Wildcard Certificates</strong></h4> <p><strong>Validating Via Email</strong></p> <p>After completing the steps, you will receive an email containing a secure link to activate validation to generate the SSL and issue the files. Clicking the link will notify the Validation team within an hour that the confirmation is complete.</p> <p><strong>Validating via CNAME</strong></p> <p>A special unique CNAME is generated for each SSL validation request. Our support agent will provide you with the CNAME and inform you of the next steps. No email confirmation is needed to validate via CNAME. It may take 1-2 hours for the Validation team to confirm this. Please see <a href="#UpdateCNAME">How to Update CNAME Records for Validation</a>.</p> <p><strong>Validating via HTTP TXT File</strong></p> <p>A special unique MD5 Hash Code is generated for each SSL validation request. Our support agent will take this information and create a .txt file to upload into your FTP site files. No email confirmation is needed to validate via HTTP. It may take 1-2 hours for the Validation team to confirm this.</p> <p><strong>Validating via Phone Call</strong></p> <p>In addition to validation steps via email, CNAME, or .txt file, you will need to respond to an email that will trigger a verification phone call back. This automated call is activated by clicking on a link in the phone verification email. Once you click the link, an autodialer will make a call and provide you with a PIN.</p> <p><strong>Timeframes</strong></p> <p>After completing the configuration and validation steps, the files will be issued and uploaded to your Account Manager. You will also be notified via email. The timeframe for SSL validation and issuance depends on the SSL type and how quickly you complete the validation steps.</p> <div class="alert alert-info"><strong>Note:</strong> You can check the <strong>Status</strong> of your SSL certificate within the SSL Control Panel. Click on the <strong>Status Definitions</strong> link to learn more about the <strong>Status</strong> of your SSL certificate.</div> <p><img alt="SSL Status Definitions" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Status_Definitions_link.png" style="max-width: 100%;" /></p> </div> </div> </div> <p> </p> <h2><a id="UpdateCNAME"></a><strong>How to Update CNAME Records for Validation</strong></h2> <div class="alert alert-warning"><strong>Important:</strong> <ul> <li>The steps below only apply if your website is hosted by Network Solutions. If you are not hosted by Network Solutions, you must contact your current hosting provider to add the CNAME records provided by our support agent.</li> <li>Please contact support to get your CNAME records. You can contact support via chat by going to <a href="http://www.networksolutions.com" target="_blank">www.networksolutions.com</a> and clicking on the <strong>Contact Us</strong> icon. Please indicate that you are validating your SSL Certificate via CNAME validation.</li> <li>Once you receive an email with the CNAME information, enter the records into your DNS manager by following the steps below. If you are not hosted by Network Solutions, you must add the CNAME records at your DNS provider.</li> </ul> </div> <p>To update your CNAME records via the Account Manager, follow these steps:</p> <ol> <li>Click <strong>Domains</strong> on the left menu.</li> </ol> <p style="margin-left: 40px;"><img alt="Domains" src="https://content.newfold.com/newfold/netsol/img/domains/dns/domains-option.png" style="max-width: 100%;" /><br /> </p> <ol start="2"> <li>Select the domain assigned to your SSL certificate.</li> <li>Scroll down to <strong>Advanced Tools</strong> and click <strong>MANAGE</strong> beside <strong>Advanced DNS Records</strong>.</li> </ol> <p style="margin-left: 40px;"><img alt="Manage Advanced DNS" src="https://content.newfold.com/newfold/netsol/img/domains/dns/manage-adns-in-advanced-tools.png" style="max-width: 100%;" /><br /> </p> <p style="margin-left: 40px;">A pop-up may show saying, "Only advanced users should make updates to their Advanced DNS Manager. Changes made to these settings may cause you to lose access to your existing email and websites."</p> <ol start="4"> <li>Click <strong>Continue</strong> to proceed.</li> <li>Click on the <strong>+ ADD RECORD</strong> button.<br /> <img alt="Add CNAME Record" src="https://content.newfold.com/newfold/netsol/img/domains/dns/Add_Record_button.png" style="max-width: 100%;" /><br /> </li> <li>In the <strong>Add Advanced DNS Records</strong> pop-up: <ul> <li>Select <strong>CNAME</strong> as the <strong>Type</strong>.</li> <li>Select <strong>Other Host</strong> in the <strong>Refers to</strong> drop-down.</li> <li>Add the Host Name (Host) and Alias (Points to) provided by our support agent via email or chat. Please see the screenshot below for an example of a CNAME record sent via email or chat. <div class="alert alert-warning"><strong>Important:</strong> Make sure to include the underscore "_" at the beginning of the Alias and ensure that there are no extra spaces in both the Host Name and Alias.</div> <img alt="CNAME Record in Email" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_SSL_CNAME_Record_in_Email.png" style="max-width: 100%;" /><br /> </li> <li>Set the TTL to 2 Hours, which is the recommended value.<br /> For example:<br /> <img alt="Add Advanced DNS Record" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_SSL_Add_Advanced_DNS_Record_pop-up.png" style="max-width: 100%;" /> <div class="alert alert-info"><strong>Note:</strong> If you are re-issuing or revalidating an SSL Certificate, replace the old record with the new CNAME record. However, if you are unsure if you should remove your existing CNAME record, consult with your DNS provider to ensure you are not removing your records unnecessarily.</div> </li> </ul> </li> </ol> <ol start="7"> <li>Click the <strong>ADD</strong> button.</li> </ol> <div class="alert alert-info" style="margin-left: 40px;"><strong>Note:</strong> CNAME validation may take 24-48 hours based on DNS propagation.</div> <h2><a id="SSLTypes"></a><strong>Types of SSL Certificates</strong></h2> <table class="table table-striped table-hover"> <thead> <tr> <th> </th> <th>XPRESS</th> <th>BASIC</th> <th>ADVANCED</th> <th>WILDCARD</th> <th>UCC</th> <th>EXTENDED</th> </tr> </thead> <tbody> <tr> <td>384-bit encryption</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> </tr> <tr> <td>Issuance time</td> <td>Minutes ±</td> <td>1 business day ±</td> <td>1 business day ±</td> <td>1 business day ±</td> <td>Minutes ±</td> <td>4-5 business days ±</td> </tr> <tr> <td>Domain validation</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> </tr> <tr> <td>Organizational validation</td> <td> </td> <td>✔</td> <td>✔</td> <td>✔</td> <td> </td> <td>✔</td> </tr> <tr> <td>Extended validation</td> <td> </td> <td> </td> <td> </td> <td> </td> <td> </td> <td>✔</td> </tr> </tbody> </table> <p class="alert alert-warning"><strong>Important:</strong> The issuance time is only estimated hence the plus-minus sign. It also varies depending on the completion of the verification process or technical problems/delays.</p> <h2><a id="Review"></a><strong>Review</strong></h2> <p>Understand the next steps after purchasing an <a href="https://www.networksolutions.com/security/ssl-certificates" target="_blank">SSL certificate</a> to secure your website. This guide outlines how to get started with an SSL certificate, specifically how you can configure your SSL certificate, update your CNAME records for validation, and enable HTTPS. Domain Validation certificates follow a 3-step process. However, Organizational Validation and Extended Validation certificates require you to follow additional steps. Remember to issue your SSL certificate using the correct domain.</p> <div class="fixed"><a class="btn btn-outline-primary btn-sm fixed" href="#top" role="button">Back to Top ↑</a></div> </div>