How to Install Comodo SSL on Vestacp (with Pictures)
Edit Article

  • 1 Editor

In this article, I am going to show you that how can you setup Comodo SSL for your blog or website that is hosted on a server running VestaCP.

Comodo positive SSL

Before getting into installing everything, let me give you a brief intro about Comodo SSL. It is basically an SSL certificate, which is very strong. It is basically suitable for blogs, websites etc. it provides online automated validation which is fast and low cost. Some of the technical specifications of Comodo PositiveSSL are as follows :

  • Certificate for 1 domain
  • Includes www, non-www
  • $10,000 warranty
  • Unlimited re-issues for free
  • Supports 99.9% browsers
  • The bitkey length is 2048-4096
  • Encryption of upto 256-bit

I just want to tell you that it is almost impossible to crack the certificates encrypted between 128-256 bits. But still if someone cracks it, then then victim will be paid warranty compensation by Comodo.

Comodo positive SSL basically validates that your domain belongs only to you. So now I am going to tell you that how can you get it.

Getting PositiveSSL

If you are going to buy Comodo PositiveSSL from its official website, then it is going to be very expensive, but if you buy it from other big resellers who offer discounted prices, then you might get it cheaper. I’ll buy from

Step 1

If you want to use the same link as me go on the link below:

[[1]] Step 2

Click on the following button in the PositiveSSL box.


Step 3

After that, in the top right corner of the page, click on the cart button to see if your order has been placed or not.


Step 4

Now a next page will come where you can click on the checkout button if everything looks good.


Step 5

Enter your email address to sign up to


Step 6

After clicking on the done button, another page will come where you will have to enter a few of your details. After entering these details, click on the payment button.


Step 7

In this page, you will have to select a payment method.


Step 8

You will have to make your payment after selecting the payment method.


Step 9

Once the payment is done, your order number and the activation code will be displayed to you in the next page.


SSL certificate generation

Step 10

Now you have to activate that certificate that you have ordered. If by chance you have ordered it from same as me, click on the orange button and proceed.

Step 11

You have to enter the csr (certificate signing request) key in the next page.


Get csr key on your VestaCP

Step 12

If you want to get your csr key of your server on VestCP, then you have to login to the management panel of your VestaCP by going to this link : [[2]]


Then you have to click on Web, then your domain.tld, then Edit.


Now in the next page, enable the SSL support option.


Then click on the generate csr option, now a new tab/browser window will open.


Now fill all the required fields there. Enter your working email address in it. If you are a citizen of UK, then you have to enter GB in the country 2 letter code. After entering everything, press ok.


Now the csr key, SSL certificate and rsa private key will be displayed to you.


Step 13

Duplicate the csr key from your VestaCP, then glue it to your positiveSSL supplier.


After pasting the csr key, click on the orange colored read csr button.


Step 14 will read your csr key and after that show it in the following page for you to review. Now if everything looks fine click on onwards button.


Step 15

Now will tell you about these certificates. Click on onwards button.


Step 16

Now it needs to confirm that you are applying this certificate on your own domain. You can confirm it by 2 methods. By receiving an email or by uploading the file. Choose your preffered method and then click onward button.


Step 17

Now you will be redirected to the next page where you will have to enter all of your details.


Click on the onwards button once you have entered everything. Now you will reach the next page.


Step 18

Now you have to check your inbox for an email or upload the file to proceed with the confirmation process. If you are using the email method, you have to confirm your email by entering the given validation code.


Now enter the validation code in the Comodo website and click next.


Step 19

Now you have to wait for a few minutes and then you have to check your inbox. The certificate file will be directly emailed to you. It will look like this:


Step 20 Now you have to download the .zip file which is attached. It should be named


Step 21

Extract the contents of that file and then you will get 4 files. They will be following:

domainname_tld.crt COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt


Step 22

Now you will have to open each file and then copy and paste its contents to the corresponding field in VestaCP. The main rule is :

SSL Certificate:


SSL Key:

In Vesta the SSL Key that you have created in CSR Generation

SSL Certificate / Intermediate:

Use the other three certificates sended by Comodo in this order:

1- COMODORSADomainValidationSecureServerCA.crt

2- COMODORSAAddTrustCA.crt

3- AddTrustExternalCARoot.crt

I will show this process to you in the coming steps.

Step 23

First open the domainname_tld.crt file through aby text editor. Copy all of its contents. You should not add or remove anything to it.


Now go back to management panel of VestaCP and paste the content in the SSL certificate field.


Step 24

Now you have to go back to another VestaCP page where you had generated the csr key previously. Now you have to copy the SSL key contents.


Now paste the content in the SSL key field in the previous tab.


Step 25

Now open the file named COMODORSADomainValidationSecureServerCA.crt . now you have to copy and paste its contents to the Intermediate/SSL Certificate Authority field.


Step 26

Now open the file named COMODORSAAddTrustCA.crt and then copy and paste its contents to the previous field right after where the previous file contents are copied.


Step 27

Open the file named AddTrustExternalCARoot.crt and then copy and paste its contents in the same previous field right after where the previous file contents are copied.


Step 28

Now click on the save button. Now you will see something like this:


If you get this message “changes have been saved”, then it will mean that everything is fine. Or else you will get an error message.

Step 29

Now open your website in a browser viahttps://protocol. In firefox, you will see something like this in the address bar.


Step 30

If you are using wordpress, then you will have to search for any SSL plugin so that it redirects all the requests to SSL. Really simple SSL plugin is one of the best.


If you are using something other than wordpress, then simply add the following lines to the .htaccess file so that it can perform 301 redirection from http to https.

RewriteEngine On

RewriteCond %{HTTPS} off

RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

This is it. If you followed the steps correctly, then you have successfully installed comodo ssl on vestacp.

Article Tools

Did this article help you?


an Author!

Write an Article