Let's Encrypt, premium and Wildcard SSL, HTTPS, Mixed Content, HSTS, Cloudflare SSL, and diagnostics.
In cPanel go to SSL/TLS Status. Find your domain and click "Run AutoSSL". A Let's Encrypt SSL certificate will be installed and renewed automatically. Verify that your site works over https:// and set up a redirect from http:// to https:// in the .htaccess file.
If you purchased a premium SSL certificate, in cPanel go to SSL/TLS > Install and Manage SSL. Enter the certificate (CRT), private key (KEY), and CA Bundle. Click "Install Certificate". Contact support if you need help.
An SSL certificate encrypts data between the server and visitors and displays a padlock in browsers. Free AutoSSL: In cPanel go to SSL/TLS Status and click "Run AutoSSL" — wait 1-5 minutes. AutoSSL renews automatically. Premium SSL: Buy the certificate, generate a CSR in cPanel (SSL/TLS > Generate CSR), send the CSR to the issuer, verify the domain, then in SSL/TLS > Install and Manage SSL paste the CRT, key, and CA Bundle. BeoHosting includes free AutoSSL in all hosting packages.
A Mixed Content error occurs when your site has SSL but some resources (images, scripts) still load over HTTP. In WordPress go to Settings > General and change WordPress Address and Site Address from http:// to https://. Install the Better Search Replace plugin and replace all http://yourdomain.com with https://yourdomain.com in the database. In the browser press F12 and in the Console tab you will see exactly which resources cause the error.
The quickest way is to open your site in a browser and verify that a padlock icon appears next to the address. If the padlock is closed, SSL is correct. For a detailed check, visit ssllabs.com/ssltest and enter your domain — an A or A+ grade means everything is fine. If you see a "Not Secure" warning in the browser, SSL is not installed or has expired.
Sign in to cPanel at yourdomain.com:2083 and open File Manager. Find the .htaccess file in the public_html folder (enable showing hidden files). Add at the top of the file: RewriteEngine On, RewriteCond %{HTTPS} off, RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]. Alternatively, in cPanel use the Domains option and enable Force HTTPS Redirect for your domain.
If you are using free Let's Encrypt SSL, sign in to cPanel (yourdomain.com:2083) and go to SSL/TLS Status. Click "Run AutoSSL" to trigger automatic renewal. If AutoSSL reports an error, check that your domain points to the server IP (A record in DNS). A common issue is that you changed DNS without updating the A record to the BeoHosting server. AutoSSL renews automatically every 60-90 days but can fail if there is a DNS or firewall problem.
Wildcard SSL covers your main domain and all subdomains (*.yourdomain.com). In cPanel open "SSL/TLS" and generate a CSR with Common Name *.yourdomain.com. Send the CSR to the certificate authority at purchase. After receiving the certificate, in SSL/TLS > Manage SSL Sites pick the domain and enter the certificate, private key, and CA Bundle. Click "Install Certificate". Wildcard is ideal if you use multiple subdomains (mail, shop, blog).
DV (Domain Validation) only confirms ownership of the domain — issued within minutes, ideal for blogs and smaller sites. OV (Organization Validation) additionally verifies company details, suitable for business sites. EV (Extended Validation) goes through the strictest verification — recommended for e-commerce. All types use the same encryption. The difference is in the level of identity verification. For most sites, a DV certificate (like free Let's Encrypt) is perfectly sufficient.
This error means the browser does not recognize the SSL certificate issuer. The most common cause is an incomplete CA Bundle — in cPanel open SSL/TLS > Manage SSL Sites, find the domain, and check whether the Certificate Authority Bundle field is filled. If empty, enter the CA Bundle from the issuer. Another cause is an expired certificate — check the date in the same panel. For Let's Encrypt try "Run AutoSSL" in SSL/TLS Status. After the fix, open the site in an incognito window.
In cPanel open "SSL/TLS Status" under Security — you will see a list of domains with expiry dates. In the browser, click the padlock to the left of the address, then "Connection is secure" > "Certificate is valid" for exact dates. Let's Encrypt certificates last 90 days and AutoSSL renews them automatically 30 days before expiry. If they do not renew automatically, try "Run AutoSSL" in cPanel.
The error usually means the SSL certificate has expired or the computer clock is incorrect. First check the date and time on your computer. If correct, in cPanel open SSL/TLS Status and check the certificate. For Let's Encrypt click "Run AutoSSL". Clear the browser cache or open the site in a private window to rule out a local cache issue.
The key is to set the SSL mode in the Cloudflare dashboard under SSL/TLS. Choose "Full (Strict)" if you have a valid SSL on the server — the safest option. Never use "Flexible" if the site already has SSL — it causes an infinite redirect loop. If you have a redirect loop, check the Cloudflare SSL mode and remove HTTPS redirects from .htaccess. Recommendation: Let's Encrypt on the server + "Full (Strict)" in Cloudflare.
Use: openssl s_client -connect yourdomain.com:443 -servername yourdomain.com. For just the expiry date: echo | openssl s_client -connect yourdomain.com:443 2>/dev/null | openssl x509 -noout -dates. The "notAfter" field shows the expiry date. If you get "certificate verify failed", an intermediate certificate may be missing — check the installation in cPanel.
HSTS tells browsers to always use HTTPS. In .htaccess add: Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains". Before activating, make sure SSL works on all pages because browsers will not allow HTTP access while HSTS is active. Test first with max-age=3600 (1 hour), then once everything works set it to one year.
10+ godina iskustva — Stručnjaci za web hosting i infrastrukturu
Poslednje ažurirano:
Guide for using the cPanel control panel.
Installation, configuration, optimization and troubleshooting for WordPress.
How to manage DNS records and nameservers.
Creating backups and restoring data.
Managing your hosting account, activation, package upgrades, resource monitoring, and site migration.
Registration, transfer, renewal, nameservers, WHOIS, wildcard subdomains, EPP code, and seamless migration.
Configuring Outlook, Thunderbird, Gmail, mobile devices, SPF/DKIM, forwarders, and mailing lists.
