How to Get an SSL Certificate in 7 Simple Steps

1 Have the Correct Website Information

Go to the top

SSL certificates are issued by an entity known as a Certificate Authority (CA). The process of acquiring an SSL certificate can be really easy, especially if you’re prepared in advance with the right information required by the CA. This information includes:

A Unique IP Address

Based on how SSL protocol works, each certificate you want to obtain will require a separate IP address. Otherwise, people using certain older devices and web browsers will not be able to use your website. You can use this tool to find out your website’s IP address.

An Accurate WHOIS Record

When you request an SSL certificate for a domain, the certificate authority will need to verify that you own the domain name. To do that, it will check the domain’s WHOIS record.

You can use a domain lookup tool to check your WHOIS record. If the information you find is obsolete, make sure to update it!

Business/Organization Validation

If you are requesting a high-assurance certificate, the certificate authority may check government databases to validate your business. In addition, the CA may also ask you to provide the government registration document associated with your business.

2 Decide Which SSL Certificate You Need

Go to the top

There are many different types of SSL certificates, and they can be categorized based on:

• Validation level: Domain Validation, Organization Validation, and Extended Validation
• Secured Domains: Single Domain, Wildcard, and Multi-Domain

Let’s look at a brief overview of each type:

Domain Validation: This is the cheapest and lowest level of validation, which just makes sure that your company has control over the domain. It’s best suited for small businesses that generally don’t exchange any information with users.

Organization Validation: This is the medium level of validation. It checks not only domain ownership, but also details of the organization, such as name and location. This level is ideal for business websites with forms and lead-capturing features.

Extended Validation: This is the most expensive and thorough level of validation. As well as domain ownership and organization details, it verifies the company’s physical location and legal existence. It’s a good fit for websites that handle sensitive information, such as financial transactions.

Single Domain: Provides protection for a single subdomain. An SSL certificate purchased for johndoe.com, for instance, cannot be used for subdomains, such as blog.johndoe.com

Wildcard: Offers protection for unlimited subdomains of a single domain. For example, an SSL certificate purchased for johndoe.com can be applied to any subdomains, such as blog.johndoe.com or shop.johndoe.com.

Multi-Domain: Provides protection for up to 100 domains with a single SSL certificate. An SSL certificate purchased for johndoe.com, for example, can be applied to other domains, such as janedoe.com.

3 Choose a Certificate Authority

Go to the top

A Certificate Authority (CA) is an entity that issues SSL certificates. There are dozens of50  CAs operating around the world, but only a few of them own the majority of the global SSL market share. These bigger players include GoDaddy and GlobalSign.

Image Source: About SSL

You want to pick a reputable CA that can provide the type of SSL certificate you need, while also aligning with your budget and business objectives.

4 Generate a Certificate Signing Request (CSR)

Go to the top

Acertificate signing request(CSR) is a file to be generated on your web server before you request an SSL certificate from a CA. The CA will then use the information in this file to issue your SSL certificate.

The process of generating a CSR depends on the web server and hosting that your website is using. We’d recommend contacting your web host to find out if they have instructions in their knowledge base about generating a CSR.

5 Submit the CSR to Your Certificate Authority

Go to the top

Now that you’ve generated a CSR, the next step is to head over to the website of the CA you picked, and purchase the type of SSL certificate you’ll need.

After completing the checkout process, the CA will ask you to submit the CSR file you generated in the previous step.

6 Await Validation by Your Certificate Authority

Go to the top

Depending on the type of SSL certificate you purchase, the CA can take anywhere between a couple hours and a few days to validate your details, and issue your site’s SSL certificate.

For example, obtaining a domain validation certificate typically takes a couple of minutes, while an extended validation can take a few days.

7 Install Your SSL Certificate

Go to the top

Once the CA has processed your SSL certificate request, it will send you an email allowing you to access your SSL certificate. Alternatively, you can download it from the user account you created when purchasing the certificate.

The process of installing an SSL certificate depends on the OS (operating system) of the web server on which your site is hosted. Contact your web host for more info about this, or check if it has provided any online instructions on how to install your SSL certificate.

8 Can I Get a Free SSL Certificate?

Go to the top

Yes, you can. Most of the top hosting providers, including Bluehost, HostGator, and InMotion, provide you with a free SSL certificate as part of your hosting package.

Case in point: Bluehost. When you sign up for a hosting account with Bluehost, you’ll find a Let’s Encrypt SSL automatically included in your package. To activate your SSL certificate, simply:

1. Go to your Bluehost control panel
2. Navigate to My Sites > Manage Site

3. Under the Security tab, toggle on the SSL certificate switch

That’s all it takes! Once you’ve turned on the SSL switch, it can take a few hours to activate, so don’t worry if it doesn’t happen instantly.