Beginners Guide: How to Install FREE SSL in uCoz System
by Algae “Cyberdasm” Densing
First and foremost we would define the following terms:
SSL (Secure Sockets Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers. – info.ssl.com
SSL certificate is a unique digital signature that ensures secure connection between the client (browser) and the server (website). A secure connection is crucial if there are sensitive data transfers on a website (such as credit card transactions or login info). Usage of the HTTPS protocol on your website also improves search engine rankings. –uCoz
HTTPS is the secure version of HTTP that provides encryption of the data sent between the browser and the website using SSL certificates. -uCoz
In short SSL is an added security layer for your website.
There are also pros and cons if you install ssl in your website.
- Improve SEO rankings. According to googleblog
- It will slow down your page load speed. According to Alex Moloney (Paradox) SSL does slow down your page load speed. The transport layer requires encryption/decryption at each end which adds load time. Depending on the content, server specs, and network topology this can be all of 0.1-0.5 of a second, to 1-2 seconds extra. Source: http://caco.ga/12
In order to obtain ssl for your website hosted in uCoz you must have the following:
• Domain Name – You needed this because you couldn’t configure the control panel for Domain Attachment.
***There are many free domains you could acquire. I would suggest find it in Freenom.com if you can't afford to buy a higher TLD
• Upgrade your account to BASIC. The Very Important Part. Refer to Figure 1.
• SSL certificates – Already defined above.
PART 1: OBTAINING SSL CERTIFICATE!
STEP 1. If you haven’t attached your domain name you must first attach it before you proceed.
STEP 2. Visit www.SSLForFREE.com and enter your website URL inside the box with www. Then submit it. Refer to Figure 2.
STEP 3. Choose Manual Verification (DNS) and click Manual Verify Domain button at the center-bottom of the page.
STEP 4. A Hidden tab will open containing the basic instruction on how to upload verification files. Refer to the image below.
STEP 5. I base my instruction in the image of Step #4. This is the crucial step and also the tricky part. I made twice attempt before I got the result. (Please refer to the image of Step 4 so that you wouldn’t be confused.)
a. In #1: You must read it so that you have a basic understanding on how it works.
b. In #2: The most tricky and crucial part. All you need to do is: go to your uCoz Control Panel (uCP) www.Your Website.com/panel/?a=domain_transfer . Then edit your domain records in EXPERT MODE.
i. In #2.1: In Variables Record Section, create TXT record under TYPE Column. (If you don’t know how just click A then choose TXT and make sure that you selected an empty field. Kindly pm if you are really confused.) Paste the value (qUVPpwp40vBJc4HPqOVkoWW1uqHfXUsXJAVY8wMSfyA this is just an example since every domain has a unique value) in the value field Column.
Copy the text until the 3rd level domain name only (www <-- do not copy the dot(.) after this.), . _acme-challenge.www[.caco.ga] Paste it in the Subdomain column, remember there is a dot (.) before the underscore(_) and do not include the domain name (I put brackets in it.) as well as the extension.
ii. In #2.2: Is the same instruction with #2.1 but without www.
iii. To RECAP:
In 2.1 paste this: . _acme-challenge.www in the Subdomain field, Type dropbox chose TXT and lastly paste the Value e.g qUVPpwp40vBJc4HPqOVkoWW1uqHfXUsXJAVY8wMSfyA in the Value field. (Always remember the dot.)
In 2.1 paste this: . _acme-challenge in the Subdomain field in Type dropbox chose TXT and lastly paste the Value in the Value field.
iv. Then save your newly updated setting. And wait for at least Two (2) hours and a maximum of four (4) hours to propagate the updated settings.
Remember this “DO NOT RESTART OR REFRESH SSLFORFREE WEBSITE WHEN YOU FINISH UPDATING YOUR uCP. SINCE THE VALUE IS UNIQUE AND IT CAN’T BE RETRIEVED. AND MAKE SURE YOUR BROWSER WILL BE IN A STANDY BY MODE FOR FOUR (4) HOURS MAXIMUM. IT IS BECAUSE THE UCOZ TLD HAS A VALUE OF 10K+.”
c. In #3: (Step #4 image) You must have patience since you will encounter a message when you click the two links:
No TXT Record Found. Set the TTL to 1 second or if you cannot set the TTL then you must wait the TTL (in seconds) so it updates before verifying the domain.
That message signifies that the server do not yet respond to your request so you must wait a little bit.
DO NOT CLICK DOWNLOAD SSL CERTIFICATE YET: EVENTHOUGH THIS MESSAGE WILL APPEAR WHY? Here’s the reason: If the TXT value of the image below or in the verification page, isn’t the same TXT value in STEP #4(DNS Settings of your uCP) then you needed to wait. If you failed in this step go back to step 2.
d. If the Value are the same then it is safe now to click Download SSL Certificate. The image below is an example of SSL certificate. Download the file for backup copy.
Part 2: INSTALLING THE SSL CERTIFICATE
STEP 1. Go to your SSL Settings under Security Tab or navigate to http://yourdomain.com/panel/?a=ssl_certificate
STEP 2. Check the box titled “Enable HTTPS.” After you check it the would be an extra field entitled for your SSL Certificate strings. Here are the following:
a. Private Key - The key that you generated (with the app or on the console) when obtaining your certificate. Contact your certificate authority for details.
b. Certificate for the domain - The certificate code for the domain that you received from your certificate authority.
c. Intermediate certificate - Code of the intermediate certificate that you received from your certificate authority.
STEP 3. Copy All lenghty string of codes from sslforfree to uCoz ssl field. Refer to the image below.
NOTE: The CA bundle in SSLFORFREE is the Intermediate certificate in uCoz. (Don’t forget.)
STEP 4. For Maximum Security Check also the box titled “Prohibit HTTP for connected links” Then save.
STEP 5. After you Install your certificate. Please bear in mind that it takes a few minutes that the uCoz system will update your certificate. If you can see a color red subscript in https its okay just wait for a while. There’s no need to worry about that.