The first thing I needed to do was get an SSL cert bound to my website. Nobody wants to visit a site with an SSL warning. In my daily work doing sysadmin-y things, I know what to do: Create a CSR, submit to the security dudes, get the new cert from them/the CA, import into Windows and bind to the site/app. Done. What about Godaddy hosting, where I can’t just log in and run IIS Manager?

My package with Godaddy includes Plesk for management. It seems like every search result about installing SSL certs on Godaddy was for cPanel, or an older version of the Godaddy interface (which recently migrated to something new), so it was pretty much impossible to follow whatever directions I could find. But, good news, I figured it out! So I’ll describe the process here.

Of course you have to log in to Godaddy. Once you’re in, click your name to open a drop-down, and then hit “My Products.” This will take you to “All Products and Services.” There’s a box for Domains, Web Hosting, Website Security and Backups, and Additional Products.

In the Web Hosting box, next to/across from your website, click the Manage button. On the subsequent page at the top right, click the Plesk Admin button. This opens the Plesk control panel. Click “SSL/TLS Certificates.” Here it gets tricky. On the resulting page, there’s a grey button labeled “+ Add SSL/TLS Certificate.” It doesn’t exactly look like you can click it, and there’s a nice blue button that says “Upload Certificate.” When I saw it, I immediately went to a CA and created a cert to try the upload. It didn’t work. You have to click the gray button to “Add SSL/TLS Certificate.

After clicking the gray button you will be taken to a page where you can create a CSR for the CA. Since I had gone to the CA and got a cert to “upload” on the previous screen, and thus had some files, I did not fill in the CSR details here. That will be material for a post when I renew the cert.

Since I had gone to SSLFORFREE.COM and followed their simple procedure to procure a cert and prove ownership of the site, I had a site cert, CA cert, and the private key. Scrolling down on the page we are on in the Plesk control panel reveals a place to upload each of the three files I obtained earlier. Simple click the browse button and locate each of the needed files. Then click the “Upload Certificate” button in that section, immediately below “CA certificate (*-ca.crt).”

Once the certs are uploaded, click “Websites & Domains” on the menu in the left pane, then click “Hosting Settings” in the control panel. Here there is a section called “Security.” Check the box for SSL/TLS Support. I also selected the “Permanent SEO-safe 301 redirect.” Then the the “Certificate” box you can click and select the cert you uploaded. Click “Apply” and “Ok” and your cert will be bound to your site and users will see your trustworthy site and not some shady no-ssl-having honey pot. :-)

Sorry there’s no full color glossy 8x10’s with a description on the back. Still learning Jekyll, but thought this information might be useful to others.

If you’ve read this far, thanks for your time. I am on Mastodon @scottws@fosstodon.org if you want to follow/chat/ask questions, etc.