JavaScript Required.
We're sorry, but Pega7 doesn't work without JavaScript enabled. Please enable and refresh.
<script type="application/json" id="kb_ai_metadata"> { "product_name": "ssl-certificate", "task_type": "how-to", "keywords": ["validation", "encryption", "https", "csr-generation", "private-key", "browser-warning", "ssl-installation", "ssl-activation", "renewal", "zone-file", "cname-record", "dns-management", "troubleshooting"], "status": "current", "is_recommended": "true" } </script> <p><a id="top"></a></p> <style type="text/css">p, div, ol, ul, li {font-family: Arial, Helvetica, sans-serif; font-size: 14px;} .table, th, td {font-family: Arial, Helvetica, sans-serif; font-size: 14px;} .table-hover tbody tr:hover td {background-color: LightBlue;} .alert-info{color: #055160;} .alert-primary{color: #084298;} .alert-warning{color: #664d03;} </style> <section> <p>An SSL (Secure Sockets Layer) certificate shows visitors that your website is secure. It protects online transactions and data transfers by encrypting data. Your SSL certificate will be issued using the domain name you use for your website. The benefits you can get from an SSL certificate are:</p> <ul> <li><strong>Trust and credibility</strong>: Browsers display visual cues like a padlock icon to assure visitors their connection is secure</li> <li><strong>Search engine rankings</strong>: Google confirmed that secured sites with SSL have an advantage in search rankings</li> <li><strong>Data protection</strong>: SSL encrypts sensitive information between the website and its visitors</li> <li><strong>Professional appearance</strong>: SSL certificates create a trusted environment where potential customers feel confident making purchases</li> </ul> <p>Follow the steps below to validate and issue your SSL certificate after purchase.</p> <p>In this article, we will discuss:</p> <ul> <li><a href="#configure-ssl">How to configure SSL</a></li> <li><a href="#update-cname">How to update CNAME records for validation</a></li> <li><a href="#ssl-types">Types of SSL certificates</a></li> <li><a href="#review">Review</a></li> </ul> </section> <section data-content-status="current" data-interface-context="account-manager" data-product-context="ssl-certificate" data-solution-type="primary"> <h2><a id="configure-ssl"></a><strong>How to configure SSL</strong></h2> <div class="alert alert-info"><strong>Note:</strong> Domain Validation (DV) certificates will go through a 3-step configuration process post-purchase. If you have <strong>Basic</strong>, <strong>Advanced</strong>, <strong>Wildcard</strong>, or <strong>Extended SSLs</strong>, you will also have Organization Validation (OV) and Extended Validation (EV) certificates.</div> <p><a aria-controls="step1" aria-expanded="false" class="btn" data-bs-toggle="collapse" href="#step1" role="button" style="background-color:#000080;"><span style="color:#ffffff;">Step 1: Configure the domain name</span></a></p> <div class="row"> <div class="col"> <div class="collapse multi-collapse" id="step1"> <div class="card card-body"> <p>After you have purchased an SSL certificate, follow the steps below:</p> <ol> <li>Log in to your account manager via <a href="https://www.networksolutions.com/my-account/login" target="_blank">https://www.networksolutions.com/my-account/login</a>.</li> <li>Enter your user ID and password.</li> <li>Click <strong>Security</strong> on the left navigation menu.<br /> <br /> <img alt="Security option in the left navigation menu of the account manager" src="https://content.networksolutions.com/netsol/img/account-manager/left-navigation-page/am-left-nav-security.png" style="max-width: 80%;" /></li> <li>If you have more than one SSL certificate in your account, choose a package name and click the <strong>Manage</strong> button.<br /> <br /> <img alt="Manage button" src="https://content.networksolutions.com/netsol/img/security/all-security-products-page-manage-ssl-button.png" style="max-width: 80%;" /><br /> <div class="alert alert-primary"><strong>Note:</strong> The SSL Control Panel will open in a new browser window. If you have pop-up blocking activated in your browser, please modify your browser settings.</div> </li> <li>Assign a domain name for your SSL certificate.<br /> <br /> <img alt="Assign Domain step in the SSL control panel" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Assign_Domain_for_SSL.png" style="max-width: 80%;" /><br /> <div class="alert alert-warning"><strong>Important:</strong> Make sure that you issue your SSL to the exact version of the domain or subdomain you want to assign it to (e.g., <code>example.com</code>, <code>www.example.com</code>, or <code>store.example.com</code>).</div> </li> <li>Once you have entered the domain name, re-enter the domain name one last time.<br /> <div class="alert alert-warning"><strong>Important:</strong> You will not be able to change the domain once it has been assigned.</div> </li> <li>Click <strong>Continue</strong>.</li> </ol> <p>The system will perform a verification check to see if the domain entered is assigned as a domain pointer to a hosting package managed by Network Solutions. If Network Solutions does not host your website, you will be prompted to choose a server type and input a CSR (Certificate Signing Request).</p> <p>If the domain is pointed to our hosting, the server type is determined by the package it is assigned to (Windows- IIS or UNIX- Apache). Additionally, the CSR for your shared hosting package is generated automatically on the back end and attached to the validation request so the certificate files can be created post-validation.</p> </div> </div> </div> </div> <p><a aria-controls="step2" aria-expanded="false" class="btn" data-bs-toggle="collapse" href="#step2" role="button" style="background-color:#000080;"><span style="color:#ffffff;">Step 2: Provide CSR</span></a></p> <div class="row"> <div class="col"> <div class="collapse multi-collapse" id="step2"> <div class="card card-body"> <p>A Certificate Signing Request (CSR) is the key to the SSL certificate. It houses everything about the server, organization, domain, private key, and encryption strength related to the SSL. It is the basis for how the SSL installation files are created and what dictates the handshake to make the secure connection through the browser session.</p> <p>If a third-party hosting provider hosts your website, you are responsible for providing the CSR for validation. If Network Solutions hosts your website, this step is already taken care of on the back end during the configuration process.</p> <p>Follow the steps below if your website is not hosted by Network Solutions, but you have purchased our SSL product:</p> <ol> <li>Select the server software type provided by your current hosting provider.</li> <li>Enter the CSR that your current hosting provider provided into the <strong>Enter CSR From Web Host</strong> field.</li> <li>Click the <strong>Continue</strong> button.<br /> <br /> <img alt="Provide CSR step in the SSL control panel" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Provide_CSR_for_SSL.png" style="max-width: 80%;" /></li> </ol> </div> </div> </div> </div> <p><a aria-controls="step3" aria-expanded="false" class="btn" data-bs-toggle="collapse" href="#step3" role="button" style="background-color:#000080;"><span style="color:#ffffff;">Step 3: Provide validation information</span></a></p> <div class="row"> <div class="col"> <div class="collapse multi-collapse" id="step3"> <div class="card card-body"> <p>Now that you have assigned your domain and provided your CSR, select an email address to receive the validation code and confirmation URL.</p> <p><img alt="Submit validation information step in the SSL control panel" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Submit_Validation_Info_for_SSL.png" style="max-width: 100%;" /></p> <div class="alert alert-warning"><strong>Important:</strong> If you have enabled <a href="https://www.networksolutions.com/domains/private-domain-registration" target="_blank">Domain Privacy + Protection</a> on your domain, we do not advise you to disable it to complete the validation process. <a href="https://www.networksolutions.com/help/article/ns-domain-privacy-protection" target="_blank">Disabling Domain Privacy+Protection</a> will expose your contact information in WHOIS. Other methods of validation outside of email verification are available. You must configure email validation first, and the support agent can change the method.</div> <h3>Other validation methods</h3> <p><strong>CNAME</strong>: This method is becoming the preferred method due to the challenges with email. We will provide you with a CNAME to be added to your DNS zone provider. Our support agent can assist you in <a href="#update-cname">updating your DNS records</a> if Network Solutions hosts your website. You or our support agent can add the CNAME via the account manager for verification and SSL issuance.</p> <p><strong>HTTP/.txt file</strong>: When Network Solutions manages all certificate components (domain, hosting, and SSL), we will automatically create a .txt file based on the MD5hash and SHA3 components of the CSR and upload it to the webspace via FTP. This method allows this file to be verified and expedites SSL issuance (You can also create this manually and upload it).</p> <p> </p> <h3>Completing Domain Validation</h3> <p><strong>Validating email</strong></p> <p>After completing the steps, you will receive an email containing a secure link to activate validation to generate the SSL and issue the files. Clicking the link will notify the Validation team within an hour that the confirmation is complete.</p> <p><strong>Validating via CNAME</strong></p> <p>A special unique CNAME is generated for each SSL validation request. Our support agent will provide you with the CNAME and inform you of the next steps. No email confirmation is needed to validate via CNAME. It may take 1-2 hours for the Validation team to confirm this. Please see <a href="#update-cname">How to update CNAME records</a> for validation.</p> <p><strong>Validating via HTTP TXT file</strong></p> <p>A special unique MD5 Hash Code is generated for each SSL validation request. Our support agent will take this information and create a .txt file to upload into your FTP site files. No email confirmation is needed to validate via HTTP. It may take 1-2 hours for the Validation team to confirm this.</p> <p> </p> <h3>Additional steps for Organizational Validation (OV) and Extended Validation (EV)</h3> <ol> <li>If you have Basic, Advanced, Wildcard, or Extended SSLs, you will have either an Organization Validation (OV) or an Extended Validation (EV) in addition to the standard Domain Validation. In this step, you must complete an additional form including details associated with the business or organization, which will be included in the files issued for the SSL. All fields are required unless specifically noted.</li> <li>You will need to respond to an email that will trigger a verification phone callback. This automated call is activated by clicking on a link in the phone verification email. Once you click the link, an autodialer will make a call and provide you with a PIN.</li> <li>After completing the configuration and validation steps, the files will be issued and uploaded to your SSL control panel. You will also be notified via email. The timeframe for SSL validation and issuance depends on the SSL type and how quickly you complete the validation steps.</li> </ol> <div class="alert alert-info"><strong>Note:</strong> You can check the <strong>status</strong> of your SSL certificate within the SSL control panel. Click on the <strong>Status Definitions</strong> link to learn more about the <strong>status</strong> of your SSL certificate.</div> <p><img alt="SSL Status Definitions" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_Status_Definitions_link.png" style="max-width: 80%;" /></p> </div> </div> </div> </div> </section> <p> </p> <section data-content-status="current" data-interface-context="account-manager" data-product-context="ssl-certificate" data-solution-type="primary"> <h2><a id="update-cname"></a><strong>How to update CNAME records for validation</strong></h2> <div class="alert alert-warning"><strong>Important:</strong> <ul> <li>The steps below only apply if your website is hosted by Network Solutions. If you are not hosted by Network Solutions, you must contact your current hosting provider to add the CNAME records provided by our support agent.</li> <li>Please contact support to get your CNAME records. You can contact support via chat by going to <a href="http://www.networksolutions.com/" target="_blank">www.networksolutions.com</a> and clicking on the <strong>Contact Us</strong> icon. Please indicate that you are validating your SSL certificate via CNAME validation.</li> <li>Once you receive an email with the CNAME information, enter the records into your DNS manager by following the steps below. If you are not hosted by Network Solutions, you must add the CNAME records at your DNS provider.</li> </ul> </div> <p>To update your CNAME records via the account manager, follow these steps:</p> <ol> <li>Click <strong>Domains</strong> on the left menu.<br /> <br /> <img alt="Domains option in the left navigation menu of the account manager" src="https://content.networksolutions.com/netsol/img/account-manager/left-navigation-page/domains.png" style="max-width: 80%;" /><br /> </li> <li>Select the domain assigned to your SSL certificate.</li> <li>Scroll down to <strong>Advanced Tools</strong> and click <strong>Manage</strong> beside <strong>Advanced DNS Records</strong>.<br /> <br /> <img alt="Manage Advanced DNS Records" src="https://content.networksolutions.com/netsol/img/security/advanced-tools-adns-records-manage-button.png" style="max-width: 80%;" /><br /> <br /> A pop-up may show saying, "<em>Only advanced users should make updates to their Advanced DNS Manager. Changes made to these settings may cause you to lose access to your existing email and websites.</em>"<br /> </li> <li>Click <strong>Continue</strong> to proceed.</li> <li>Click on the <strong>+ Add Record</strong> button.<br /> <br /> <img alt="Add CNAME Record" src="https://content.networksolutions.com/netsol/img/security/manage-adns-records-add-record-button.png" style="max-width: 80%;" /><br /> <br /> </li> <li>In the <strong>Add Advanced DNS Records</strong> pop-up: <ol type="a"> <li>Select <strong>CNAME</strong> as the <strong>Type</strong>.</li> <li>Select <strong>Other Host</strong> in the <strong>Refers to</strong> drop-down.</li> <li>Add the <strong>Host Name</strong> (Host) and <strong>Alias</strong> (Points to) provided by our support agent via email or chat. Please see the screenshot below for an example of a CNAME record sent via email or chat.<br /> <div class="alert alert-warning"><strong>Important:</strong> Make sure to include the underscore "_" at the beginning of the alias and ensure that there are no extra spaces in both the hostname and alias.</div> <img alt="CNAME Record sent via Email" src="https://content.newfold.com/newfold/netsol/img/security/ssl/NSI_SSL_CNAME_Record_in_Email.png" style="max-width: 80%;" /><br /> </li> <li>Set the TTL to 2 Hours, which is the recommended value.<br /> <br /> <strong>For example</strong>:<br /> <br /> <img alt="Add button in Add CNAME Record pop-up" src="https://content.networksolutions.com/netsol/img/security/add-adns-record-for-cname-validation.png" style="max-width: 80%;" /><br /> <div class="alert alert-info"><strong>Note:</strong> If you are re-issuing or revalidating an SSL certificate, replace the old record with the new CNAME record. However, if you are unsure if you should remove your existing CNAME record, consult with your DNS provider to ensure you are not removing your records unnecessarily.</div> </li> </ol> </li> <li>Click the <strong>Add</strong> button.</li> </ol> <div class="alert alert-info"><strong>Note:</strong> CNAME validation may take 24-48 hours based on DNS propagation.</div> </section> <p> </p> <section data-content-status="current" data-interface-context="account-manager" data-product-context="ssl-certificate" data-solution-type="primary"> <h2><a id="ssl-types"></a><strong>Types of SSL certificates</strong></h2> <div class="table-container"> <table class="table table-striped table-hover"> <thead> <tr> <th> </th> <th>XPRESS</th> <th>BASIC</th> <th>ADVANCED</th> <th>WILDCARD</th> <th>UCC</th> <th>EXTENDED</th> </tr> </thead> <tbody> <tr> <td>384-bit encryption</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> </tr> <tr> <td>Issuance time</td> <td>Minutes ±</td> <td>1 business day ±</td> <td>1 business day ±</td> <td>1 business day ±</td> <td>Minutes ±</td> <td>4-5 business days ±</td> </tr> <tr> <td>Domain validation</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> <td>✔</td> </tr> <tr> <td>Organizational validation</td> <td> </td> <td>✔</td> <td>✔</td> <td>✔</td> <td> </td> <td>✔</td> </tr> <tr> <td>Extended validation</td> <td> </td> <td> </td> <td> </td> <td> </td> <td> </td> <td>✔</td> </tr> </tbody> </table> </div> <div class="alert alert-warning"><strong>Important:</strong> The issuance time is only estimated, hence the plus-minus sign. It also varies depending on the completion of the verification process or technical problems/delays.</div> </section> <p> </p> <section> <h2><a id="review"></a><strong>Review</strong></h2> <p>Understand the next steps after purchasing an <a href="https://www.networksolutions.com/security/ssl-certificates" target="_blank">SSL certificate</a> to secure your website. This guide outlines how to get started with an SSL certificate, specifically how you can configure your SSL certificate, update your CNAME records for validation, and enable HTTPS. Domain Validation certificates follow a 3-step process. However, Organizational Validation and Extended Validation certificates require you to follow additional steps. Remember to issue your SSL certificate using the correct domain.</p> </section> <p> </p> <p><strong>Get practical tips and product updates on LinkedIn.</strong><br /> <a aria-label="Link Follow Network Solutions" href="https://www.linkedin.com/company/network-solutions/">Follow Network Solutions</a></p> <div class="fixed"><a class="btn btn-outline-primary btn-sm fixed" href="#top" role="button">Back to Top</a></div>