What you will need:
- a domain name via namecheap ($8-$10 a year). I paid $1.18 for the .xyz top level domain and $8.88 for the .com top level domain
- web hosting via EasyWP ($8.88 a year)
- purchase SSL Certificate from Namecheap ($8.88 a year)
After purchasing an SSL Certificate package from namecheap you will need to enable/activate the SSL certificate by generating a CSR (Certificate Signing Request) code. A CSR is a block of encrypted plain text containing the information that will be used by a Certificate Authority like Comodo to issue your security SSL Certificate
There is a CSR generator tool you can use to generate a CSR (https://decoder.link/csr_generator/). After clicking the link you will have to fill out a form with the following details
- Domain name that the certificate will be issued for
- Locality where you are located
- State county or region you or your organization is located
- Organization Official registered name of your organization applying for a certificate
- Organizational Unit provide the name of the division or department within the organization indicated above or enter NA if non-applicable.
- Email address enter your email address here
- Country Code Enter two-letter code of the country your organization or company is located
After filling in the information click Generate
Once the CSR, private key and cetificate codes are generated you must store these codes or private keys if you lose them you will have to have a new key generated. I would suggest emailing them to yourself because you will need the private key code later when enabling your SSL cert through EasyWP.
Once you copy the codes and store them in a safe place click “I have copied the private key, close the window“. You should copy the CSR code as you will need it immediately after this step.
Next go back to the dashboard of your namecheap account, and click “product list” on the navigation bar on the left side of the screen. Under SSL certificates, click “activate“.
Paste the CSR code (including —BEGIN CERTIFICATE REQUEST— and —END CERTIFICATE REQUEST—) you copied earlier and the primary domain should auto-populate once pasted, then click “next”
In the next step, you need to make sure that “any other server” is selected and click the orange “next” button.
Selecting a DCV method
A DCV (Domain Control Validation) method is a way of proving that you own or control a certain registered domain name.
DCV Method 1 – DNS-based method
(If you chose the email based method you can skip this step and go directly to DCV method 2 below)
Select DNS-based method and then click next. Specify the email address that you’d like namecheap to send the SSL certificate file to and click next
Check the SSL information is correct and click submit
The next page you’ll be taken to is the Certificate Details page that should say that they initiated the activation of your certificate. Click the link on the line that says If you’re using DNS-based DCV method, go to Certificate Details Page to get the necessary host records.
From that page click Get Code from the drop down list next to where it says “See Details” and make sure to keep this window open.
Open up a new window and log into namecheap and click domain list, then manage next to necessary domain, then advanced DNS, click the Add New Record button and select CNAME from the drop-down menu type.
Copy and paste the info from the Certificate Details page next to host under host field for the CNAME record on the Advanced DNS page but you need to delete the end/domain portion if you are using Namecheap Basic nameservers or PremiumDNS because namecheap adds the domain name automatically to the values submitted during record creation. Next copy and paste the info next to Target under target on the CNAME record. change TTL to 1 minute and click green checkmark to save changes.
You’ll receive an email with a .zip file of your Positive SSL certificate attached that you will need to download.
DCV Method 2
Select “email” as the DCV method (Domain control validation) and select an approver email (email address where you will have to click the validation link). Then choose an email address you’d like the certificate sent to and click next. Check that SSL information is correct and click submit
You will receive an email for domain control validation with a validation code.
Copy the validation code, click the link in the email to permit the issuance of the certificate and paste the validatoin code in DCV box of the SSL certificate validation page and click next and and then click close window.
SSL Certificate files
The email you receive contains a .zip file with two files
- your positive SSL certificate boutthatbitcoin_com.crt
- your apache “bundle” file boutthatbitcoin.com.ca-bundle.
You can also download the 2 files via namecheap from the Domain List section. Click manage next to the domain name you need to download for the certificate. Which should display an image of a red padlock
Click the products tab and then the manage button to the right side of the screen.
Under Domain List – Details – SSL and click see details then download cert
If you downloaded the zip file from namecheap it should contain 3 files. If you downloaded the zip file from the email you were sent it should contain 2 files.
- ca-bundle file is a file with the certificate authority chain which needs to be installed on your server with your domain cert and is necessary for the browser to be able to check the CA signature of the certificate
- security certificate is a .crt file with your server cert
- PKCS #7 certificate or p7b file is the ca-bundle and security certificate combined into one file
After downloading and unzipping the files you need to open the ca bundle file with a text editor like notepad, select all and copy. Then open the security certificate/.crt file with a text editor like notepad and paste at the bottom. File, save then exit. you have just created the SSL security certificate/.crt file you will need to enable SSL via EasyWP.
Next we will create the Private Key file for EasyWP using the private key code from the Certificate Signing Request. Create a new text document. Name the file after your domain name (i.e. jumaanewilliams.key). Copy the code, including “—–BEGIN RSA PRIVATE KEY—–” and “—–END RSA PRIVATE KEY—–” headings, paste it to the text file and select “.key” extension when saving the file. If the “.key” extension is not available, enable “All Files” option under “Save as type” drop-down menu and try to specify the extension manually. Note: make sure you select ANSI format, also known as ASCII, when saving the file.
Enabling SSL and Adding the files to your site via EasyWP
Log into EasyWP click necessary domain then click domains.
We need to upload the required files to SSL certificates in EasyWP
Under missing SSL certificates upload the .crt/security certificate file (with the combined codes) you created earlier. Under missing private key upload the .key text file you created earlier with the Private Key code from the CSR process.
Once the files have been uploaded, toggle the button below to enable SSL. If you ever need to upload a new file in the future you will need to disable SSL first.
Add your SSL Seal/Token
You should have received an email stating that “your COMODO SSL TrustLogo is ready!” accompanied with a link that will take you to a page with the instructions on how to add your TrustLogo to your website. Placing a Sectigo TrustLogo on your website can increase visitor trust, reduce shopping cart abandonment and increase sales.
The first thing you need to do is select your certificate type from the drop-down box.
Three trust logo images will appear that you will need to download or right click and save images and then click Continue.
Upload those images to the Media Library in your WordPress website by logging into your wordpress website and clicking Media then Add New. and copy the image URL.
You will need to paste the URL where it says “Once you’ve uploaded the TrustLogo image to your web server, copy and paste the URL of the image file to verify it” and click verify. An image will appear to the left. Once you see the image you can click Continue.
After clicking continue you will need to install the trust logo. Code snippets will be provided for you to copy so that you may install them to your website.
There are two codes provided, one to be added before your </HEAD> tag and the other to be added to your </BODY> tag
Adding Codes to the Header and Body of your WordPress site
Log into your WordPress website. Go to Appearance then editor.Scroll down to header.php
Search for </head> by hitting Ctrl+F and type </head>.
Paste code before the closing </head> tag.
Click update file to save what you did.
That’s it you have now setup SSL on your site and added the logo