When you use a paid SSL certificate from a commercial provider, you first need to generate a Certificate Signing Request (CSR). Plesk provides a built-in interface to generate the CSR, install the issued certificate, and assign it to your domain without editing configuration files manually.
This workflow is typically used on environments managed through Plesk hosting where full control over SSL certificates is required.
When You Need a CSR
A CSR is required when:
- You are purchasing a paid SSL certificate from a Certificate Authority
- You need organization-validated or extended-validation certificates
- Let’s Encrypt is not suitable for your use case
The CSR contains your domain and organization details and is used by the Certificate Authority to issue the SSL certificate.
Generating the CSR in Plesk
Étape 1: Open SSL/TLS Certificates
Log in to the Plesk control panel.
From the left sidebar, open Websites & Domaines and click SSL/TLS Certificates.
[Screenshot: Websites & Domains page with SSL/TLS Certificates icon]
Étape 2: Create a new certificate request
Faire un clic Add SSL/TLS Certificate.
Fill in the request form with your certificate details. Use the domain name as the certificate name so it is easy to identify later.
If you want the certificate to cover both the root domain and the www version, enter www.example.com in the domain name field.
Enter a valid email address. Plesk uses this address to send the CSR information.
Faire un clic Demande to generate the CSR.
[Screenshot: CSR request form]
Étape 3: Copy the CSR
After the request is created, click the certificate name to open it.
Scroll to the CSR section and copy the entire block, including the begin and end markers.
[Screenshot: CSR text block]
Ordering the SSL Certificate
Use the copied CSR when ordering an SSL certificate from your chosen provider.
During the order process:
- Select a web server type compatible with Plesk
- Paste the CSR exactly as generated
- Choose an email address where approval and certificate files will be sent
If domain privacy is enabled, make sure the selected approval email address is active and accessible.
Once the request is approved, the Certificate Authority will send the SSL certificate files.
Installing the SSL Certificate in Plesk
Étape 1: Upload the certificate
Return to Websites & Domaines and open SSL/TLS Certificates.
Click the certificate name you used when generating the CSR.
Scroll to the section for uploading the certificate as text.
Paste the full certificate contents, including the begin and end markers, into the certificate field.
If required, also paste the intermediate or CA bundle provided by the Certificate Authority.
Faire un clic Upload Certificate.
[Screenshot: Upload certificate as text section]
Assigning the Certificate to the Domain
Étape 2: Enable SSL for the site
Open Websites & Domaines and click Hosting Settings for the domain.
Activer SSL/TLS support and select the newly installed certificate from the list.
Save the changes.
[Screenshot: Hosting Settings with SSL certificate selected]
Practical Notes
- Double-check domain names before generating the CSR
- Keep the private key secure and unchanged
- Use HTTPS redirects only after the certificate is active
Paid SSL certificates are commonly used on serveurs cloud et dedicated server environments where advanced validation or compliance requirements apply.