HTTPS at webhosting

  Administration, Settings, Web hosting

This article contains information about support for HTTPS at webhosting, offered options, and the setting methods. General information and introduction to HTTPS search in article Basics of HTTPS (HTTP over SSL).

We offer two variants of HTTPS for webhosting:

  • with shared certificate
  • with own certificate

By default, the HTTPS is disabled. When you access such Web site through HTTPS there is always error 404.

As examples, we will use webhosting domain example.cz, which has an internal URL address 489.w89.wedos.ws.

shared certificate

This variant is free, anyone can activate it. For our security is used our certificate certification authority WEDOS CA, which is not globally trusted.

It follows that, after access via the HTTPS to the internal domain (XXXX.wYY.wedos.ws) even on your domain, browsers will report a security issue, because they do not know our CA. There are two possible solutions:

  1. Ignore this error and approve an exception for this site in the browser
  2. Install in your PC to our CA certificate, more in article Certification Authority WEDOS

NOTICE! A shared certificate is not intended to have public access to your secured site. It is designed primarily to safely access to administration of your site. If you want to allow access to the secured page for your visitors, you should use your own certificate.

The final effect:

  • http://www.example.cz/ – not secured
  • http://489.w89.wedos.ws/ – not secured
  • https://www.example.cz/ – encrypted, but untrusted (warning in browser)
  • https://489.w89.wedos.ws/ – encrypted and trusted (if you install our CA certificate)

Own certificate

Even here using HTTPS free, but here it is necessary to assign own public IP address to webhosting (IPv4 and IPv6). Own IP address is charged at 100 CZK/month without VAT (120 CZK with VAT).

Then it is possible to set up your own certificate and private key at webhosting. You must take care of yourself of the issue of the certificate, in this way there is no consultation or mediation from us, you need to deliver the final certificate and private key to us.

For Certificate, specify the domain name that you will use in the URL address of your site. If the name does not match exactly, it will be encrypted, but not trusted (browser warning).

  • certificate for example.cz – will only work for https://example.cz/, but not for https://www.example.cz/
  • certificate for www.example.cz – will only work for https://www.example.cz/, but not for https://example.cz/ or any other subdomain
  • certificate for *.example.cz (“wildcard” certificate) – will work for https://www.example.cz/ and any other subdomain (https://eshop.example.cz/ atd.), but not for https://example.cz/

The final effect (in the case of certificate www.example.cz):

  • http://www.example.cz/ – not secured
  • http://489.w89.wedos.ws/ – not secured
  • https://www.example.cz/ – encrypted and trusted
  • https://489.w89.wedos.ws/ – encrypted, but untrusted (warning in browser)

Activating and setting HTTPS

If you need HTTPS with your own certificate, contact us by using contact form with a request to add your own public IP address to webhosting, only then you will be able to activate this option and specify the HTTPS certificate and private key. Applications for own IP address are handled within 1 business day, this service is charged according to the current price list.

ATTENTION! Own public IP address can not payed separately for other periods than webhosting, service is paid from the date of activation to the end of the current subscription period of webhosting, then apply the next year along with webhosting.

To set up HTTPS at your webhosting, follow the following instructions.

  1. Log in to your account in customer center
  2. Click on tab Webhosting
  3. Open the detail of webhosting where you want to set up HTTPS
  4. In the left menu use link HTTPS
  5. Choose the option of HTTPS, if you have your own certificate insert private key and certificate, if necessary also have intermediate certificate (or multiple certificates) certification authority, all in PEM format (details below).
  6. Use button Apply changes, changes will take effect in 30 minutes.

When you use HTTPS with own certificate:

  • You must have your own public IP address, so contact us via the contact form. Get your own IPv4 and IPv6.
  • Do not forget to change A records in DNS settings for your domain, use the public IP address. Otherwise, HTTPS will not work.
  • Certificates and private keys are entered in PEM format.
  • The private key can be also specified with a password protect or without a password, if necessary enter the password.
  • If it is necessary, also insert intermediate certificate (or more certificates), if it used by your certificate authority – consult it with CA.

Online CSR Generаtor

To generate a private key and CSR request you can use online CSR Generаtor 

HTTPS and aliases

Setting up HTTPS and used certificate is valid for the entire webhosting, therefore, for the main domain and any aliases. It is not possible to assign a different certificate or disable HTTPS for aliases.

If you wish to have HTTPS only for one domain on webhosting and not for aliases, then you have to separate the aliases to another webhosting, which remains without HTTPS.

If you want HTTPS also for an alias, then there are 2 options

  1. Use a certificate that will be issued for multiple domain names at the same time (if it offers you selected CA).
  2. Move the alias to a separate webhosting.