- Plesk for Linux
- Plesk for Windows
How to secure a Plesk interface with an SSL certificate from Let's Encrypt or other certificate authorities?
Note: Plesk Onyx 17.8 secures its hostname with a free Let's Encrypt certificate automatically, if the Let's Encrypt extension is installed and the hostname is a fully qualified domain name (FQDN) and is resolved from the Internet.
Securing a Plesk interface server with a free Let's Encrypt certificate (Plesk Onyx)
In Plesk, go to Extensions and search for Let's Encrypt.
Click on Let's Encrypt and then click "Get it free" (or "Install").
Once installed, go to Tools & Settings > SSL/TLS Certificates (under Security).
Click Let's Encrypt.
Make sure the Domain name and Email address fields contain a valid information:
Domain name can be a server hostname (preferable) or any other (sub)domain name hosted on the server. It will be used as an entry point to Plesk over port 8443 (for example, https://server.example.com:8443 ) for all Plesk users (customers, resellers, etc.) who have an access to Plesk.
Note: The hostname/domain name must be resolved to a public IP address of the Plesk server from the Internet. If in doubt, check your hostname/domain name availability using DNS Lookup by MxToolBox.
If a domain, e.g. example.com, is using permanent www redirection, specify www.example.com as Domain name.
Email address will be used to receive important notifications and warnings.
Click Install. At this stage, an SSL certificate from Let’s Encrypt is generated and set to secure Plesk on port 8443. This certificate will be auto-renewed every 90 days. Here is the final look:
Now, access Plesk over https://server.example.com:8443.
Securing a Plesk interface with an SSL certificate from other certificate authorities
In Plesk, go to Tools & Settings and click SSL/TLS Certificates.
On the SSL/TLS Certificates page, add your certificate:
Note: If you are experiencing issues with a certificate installation, contact your certificate seller and ask for instruction for Plesk.
If an SSL certificate is stored in a single
Click Browse... to select a certificate file. Then click Upload Certificate.
If an SSL certificate is stored in the form of
Click Add under List of certificates in server pool and scroll down to the Upload the certificate files section and upload these files. If both the certificate and the private key parts of your certificate are contained in a
*.pem file (you can check it by opening the
*.pem file in any text editor), just upload it twice, both as the private key and the certificate. Click Upload Certificate once finished.
If an SSL certificate is stored as a text:
Click Add under List of certificates in server pool and scroll down to the Upload the certificate as text section. There, paste the certificate and the private key parts into the corresponding fields. Click Upload Certificate when you have finished.
Click [Change] next to Certificate for securing Plesk > select an uploaded certificate > click OK. Now Plesk interface is secured with an SSL certificate.