Custom HTTPS Certificate

All SpinupWP Servers come with Certbot preinstalled so that you can use a free Let’s Encrypt certificate to secure traffic to and from your websites. While Let’s Encrypt certificates are more than suitable for most WordPress websites, you might be in a situation where you need to use a custom certificate from an external certificate authority like DigiCert or Thawte. In this case, you will need to copy the certificate and its associated private key to your server and enable the custom certificate in your SpinupWP dashboard.

Copy the Custom Certificate Files to Your Server

Typically a custom certificate will be made up of two files, the actual certificate file and its private key file. Depending on the certificate you requested, you may have a primary certificate and intermediate certificates, which you will need to combine into one certificate file. You will need to combine them into a single certificate file in the following order: the primary certificate comes first, then the intermediate certificates.

This can be done by simply opening the intermediate certificates in a text file editor, pasting the details of the intermediate certificates into the file after the primary certificate, and saving the file. You can also concatenate the files via your terminal:

cat primary-certificate.crt intermediate-certificate.crt > certificate-bundle.crt

Once you have your certificate file and your private key, you need to copy them to the relevant server. You can place the certificate files anywhere on your server. We recommend placing them in the following directory path: /etc/nginx/ssl/{DOMAIN}/, where {DOMAIN} is the domain name of the relevant site for the certificate. The /etc/nginx/ssl/ directory may not exist on your server, so you will need to SSH in using any valid sudo user you’ve configured for your server and create it, as well as the relevant site-related directory.

sudo mkdir -p /etc/nginx/ssl/hellfish.media

After you’ve created the site’s SSL directory, copy the files to that location via SCP.

scp certificate-bundle.crt asimpson@hellfish.media:/etc/nginx/ssl/hellfish.media/
scp private-key.key asimpson@hellfish.media:/etc/nginx/ssl/hellfish.media/

It’s a good idea to ensure that the files have the correct file permissions. The certificate file permissions should be set to 644 and the private key to 600.

sudo chmod 644 /etc/nginx/ssl/hellfish.media/certificate-bundle.crt
sudo chmod 600 /etc/nginx/ssl/hellfish.media/private-key.key

Finally, set the directory to be owned by the root user.

sudo chown -R root:root /etc/nginx/ssl/hellfish.media

Configure An Existing Site to Use the Custom Certificate

To configure a custom certificate for an existing site, navigate to the site dashboard in SpinupWP and then click HTTPS in the site menu.

HTTPS Settings

Select the “I will provide the certificate and manage it myself” radio button, which will display fields for the Certificate and Private Key. Enter the path to both files you uploaded earlier, and click the Save button.

If everything is configured correctly, the certificate details will display as a custom certificate at the bottom of the screen.

Configure A New Site to Use the Custom Certificate

To use a custom certificate for a new site, select the “I will provide the certificate and manage it myself” radio button under “Enable HTTPS (SSL/TLS certificates)” in the Domain step of the New Site wizard. Then the path to both files you uploaded earlier, and click the Next button.

Start Your 7-Day Free Trial

Start your SpinupWP journey today and spin up your first server within minutes.

Start Your Free Trial

No credit card required

Subscribe to get the latest news, updates and optimizations in performance and security.

Thanks for subscribing 👍

To receive awesome stuff, you'll need to head to your inbox and click on the verification link we sent you.
Make sure to check your "spam" folder or your "promotions" tab (if you have Gmail).
If you're still having trouble, then messages us at sudo@spinupwp.com.

You are already logged in

It looks like you are already logged in to SpinupWP.

Please log out of this account to continue.

Registration Successful

Thanks for registering for a new
SpinupWP account.

Before getting started, could you verify your email address by clicking on the link we just emailed to you?

SpinupWP

Free Trial

Start Your 7-Day Free Trial

No credit card required. All features included.

By signing up to SpinupWP, you agree to our Terms and Conditions.
For privacy related information, view our Privacy Policy.