SSL / Install / remove on wordpress cpanel any server

Step 2 install SSL on shared IP Cpanel

We have to upload SSL certificate to shared server using. following steps

Cpanel>>Security>>TLS/SSL Certtifcates>> Upload.

Upload the SSL certificate from SSL provider.

 

Step 1. Generating SSL & download from provider Buy SSL and then click setup you will ask you to select domains hosted with GoDaddy,

CSR Generation You can generate a Certificate Signing Request (CSR) from your server by using the server’s software. Your CSR contains a public key that matches the private key generated at the same time.

HTML verification: after ask you to upload a file with unique id sent to your email
Rename file as .html with the code also place unique within that HTML file and now verify
1.Verify domain ownership.
2 emails for verification
1 is HTML file upload and another is final approval
we have to wait 5-10 minutes.

 

Don’t revoke The SSL at any cost( it not reusable once it revoked)

Migrating SSL Certificate from another Server

SSL Dashboard>> manage>> Rekey>> Enter CSR Informtion>> Download Certifcate>>Enter Private key (enocded in cpanel).

I just installed on Cpanel from GoDaddy WordPress managed Hosting.

UnInstall & 301 Redirect SSL From WordPress

  1. Change wordpress installed dirctory  from WordPress General settings>>Site name https to http://version
  2. Remove  define(‘FORCE_SSL_LOGIN’, true);
    define(‘FORCE_SSL_ADMIN’, true);
  3. /* That’s all, stop editing! Happy blogging. */
WordPress General settings>>Site name https to http://version
Site Address (wordpress installed URL)

https to Http 301 Redirection using htaccess

Options +FollowSymlinks
RewriteEngine on
RewriteBase /
RewriteCond %{SERVER_PORT} ^443$ [OR]
RewriteCond %{HTTPS} =on
RewriteRule ^(.*)$ http://www.example.com/$1 [R=301,L]
or
RewriteEngine On
RewriteCond %{HTTPS} on
RewriteRule (.*) http://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
or
RewriteEngine On
RewriteCond %{HTTPS} on
RewriteCond %{HTTP_HOST} !^domain\.com$
RewriteRule .* http://%{HTTP_HOST}%{REQUEST_URI} [R,L]
USE Replace plugin to change https:// to http:// internal links.
contact host support. Don’t Revoke SSL Certificate.
redirect https to http without certificate
Not Possible uninstall you buy or use Existing SSL certificate.
Comodo SSL Certifcte starts from $10 / Year.
https://www.namecheap.com/security/ssl-certificates/domain-validation.aspx
Note: Don;t Revoke SSL (You unable to reaccess, to you have to  buy new SSL.)
Reasons: backlinks for HTTP & https different & google treats HTTP & https as different domains. resources intensive, external link issues. (not suitable or static content website),
Also, slows down the website. there is a bandwidth different.

you might have added HTTPS to the URL. For example; https://yoursite.com instead of http://yoursite.com

Add these lines to your wp-config.php

define(‘WP_HOME’,’http://example.com’);
define(‘WP_SITEURL’,’http://example.com’);

Add these lines just before:

/* That’s all, stop editing! Happy blogging. */

define(‘FORCE_SSL_LOGIN’, true);
define(‘FORCE_SSL_ADMIN’, true);

https://www.youtube.com/watch?v=WudTb454GVw
https to http redirect htaccess
# BEGIN SSL
<IfModule mod_rewrite.c>
Options +FollowSymLinks
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteCond %{HTTP_USER_AGENT} ^(.+)$
RewriteCond %{SERVER_NAME} ^tspscjobs\.co\.in$
RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [R=301,L]
Header add Strict-Transport-Security “max-age=300”
</IfModule>
# END SSL
or
Options +FollowSymlinks
RewriteEngine on
RewriteBase /RewriteCond %{SERVER_PORT} !^443$RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://www.example.com/$1 [R=301,L]
not works
if you are going uninstall https.

install SSL certificate apache Debian /ubuntu /centos

 

Upload files to etc/ssl/  Make SSL Read by Root only.

Configure the virtual host file with SSL PORT 443

 

<VirtualHost yourdomain:443>
DocumentRoot /var/www/html
ServerName www.yourdomain.com
SSLEngine on
SSLCertificateFile /path/to/your_domain_name.crt
SSLCertificateKeyFile /path/to/your_private.key
SSLCertificateChainFile /path/to/DigiCertCA.crt
</VirtualHost>

Generally, we use port 80 instead of port 443 SSL port.

 

Test your Apache configuration (apachectl configtest)  before restarting the server avoids Downtime on production sites.

where to install ssl certificates in apache