Bemerkung: This topic describes the old procedure present in Plesk Onyx. We recommend that you use the new one offered by the SSL It! extension in Plesk Obsidian.

If you want to secure your website with an SSL/TLS certificate, you can purchase one from a Certificate Authority. You can also purchase one directly through Plesk, as well as protect your website with a free self-signed SSL/TLS certificate, or with a certificate you already own.

To purchase a certificate, you need to generate a Certificate Signing Request (CSR for short) first. Go to Websites & Domains > your website > SSL/TLS Certificates > „Advanced Settings“ > and click Add SSL/TLS Certificate. Fill out the fields marked with the red asterisk symbol (*), such as the certificate name (you will use it to identify the certificate in the list of all certificates), your personal information, the name of the domain the certificate will be protecting, and so on. Make sure that all information you provide is correct, as mistakes may make the certificate unsuitable and make it necessary to pay for a new one.

Bemerkung: Wenn Sie ein Wildcard-SSL/TLS-Zertifikat kaufen wollen, muss Ihr Domainname mit einem Sternchen (*) beginnen. Zum Beispiel kann ein Zertifikat, das für *.beispiel.com generiert wird, zum Schutz jeder beliebigen Subdomain von beispiel.com genutzt werden.

Nach Abschluss der Einstellung klicken Sie auf Anfordern. Dadurch wird die CSR und der private Schlüssel generiert und in Ihrem Repository abgelegt.

Now that the CSR has been generated, you need to provide it to the Certificate Authority of your choice to purchase a certificate from them. To retrieve the CSR, go to Websites & Domains > your website > SSL/TLS Certificates > „Advanced Settings“ and click the name of the certificate you have just generated. Scroll down to the CSR section and copy the text starting with -----BEGIN CERTIFICATE REQUEST----- and ending with -----END CERTIFICATE REQUEST----- (including those lines with all the dashes) to the clipboard. You will need to provide the CSR to the Certification Authority when purchasing your certificate. The exact procedure differs from one Certificate Authority to another, so contact the Certificate Authority for assistance should you encounter any difficulties. Once you complete the purchase, you will be given the certificate in the form of either a *.crt file, a *.pem file, or in text form.

To secure your website with the certificate you have purchased, you need to upload it first. Go to Websites & Domains > your website > SSL/TLS Certificates > „Advanced Settings“ and click the name of the certificate, then upload it as described below:

  • Sofern Sie das Zertifikat in Form einer CRT- oder PEM-Datei erhalten haben, scrollen Sie nach unten zum Abschnitt Zertifikatsdateien hochladen und laden Sie die Datei hoch. Klicken Sie nach Abschluss der Einstellung auf Zertifikat hochladen.
  • Sofern Sie das Zertifikat als Text erhalten haben, scrollen Sie herunter zum Bereich Zertifikat als Text hochladen und fügen das Zertifikat in das entsprechende Feld ein. Klicken Sie nach Abschluss der Einstellung auf Zertifikat hochladen.

This will result in the certificate being placed in your repository. You can see a list of all SSL/TLS certificates in your repository by going to Websites & Domains > your website > SSL/TLS Certificates > „Advanced Settings“.

Now that the certificate has been uploaded, you need to install it. Go to Websites & Domains > your website > Hosting Settings. From the Certificate menu, select the certificate you have just uploaded and then click OK.