Deprecated: Methods with the same name as their class will not be constructors in a future version of PHP; SPOSTARBUST_Widget_Class has a deprecated constructor in /home2/cptech/public_html/wp-content/plugins/spostarbust/index.php on line 386

Deprecated: Function create_function() is deprecated in /home2/cptech/public_html/wp-content/plugins/spostarbust/index.php on line 611

Notice: The called constructor method for WP_Widget in SPOSTARBUST_Widget_Class is deprecated since version 4.3.0! Use
__construct()
instead. in /home2/cptech/public_html/wp-includes/functions.php on line 4514
How to Force SSL Logins in WHM and cPanel | A cPanel Tech
How to Force SSL Logins in WHM and cPanel

How to Force SSL Logins in WHM and cPanel

cPanel and WHM logins will transmit the sensitive username and password through the internet and it needs to be secure. If anyone intercepts the traffic, they will be able to decode the username and password if they are submitted through an insecure page. Hence it is quite vital to use secure pages for WHM, cPanel and Webmail logins using SSL logins.

Install SSL Certificate

cPanel by default will install a self-signed certificate for the cPanel and in most of the cases, it is enough. If you are a shared hosting provider, it won’t be nice to see a warning message when your clients try to enter their cPanel securely. So the primary need is to install a valid SSL for cPanel. You need to purchase the SSL for your hostname and install it from WHM  Main >> Service Configuration >> Manage Service SSL Certificates.

There, along with cPanel, you can install the certificates for FTP, IMAP, SMTP etc also.

Steps to install certificates

Here’s how to do this:

  1. Navigate to the Tweak Settings area of your WHM to force the normal cPanel and WHM logins to use the SSL installed.
  2. Navigate to the ” Redirection ”  tab.
  3. Set Always redirect to SSL to On.
  4. Set SSL redirect destination to the SSL hostname.
  5. Navigate to the Security Tab.
  6. Set Require SSL to On.
  7. Click save in the bottom.  This will enable for redirection of cPanel, WHM and webmail logins to the secure area of the cPanel.

PS:- You can also disable HTTP Authentication,  enable Blank referrer safety check, and Cookie IP validation and enable Security tokens to enhance the security of the password being sniffed or session being hijacked by anyone.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Close Menu