Every GoZen Host plan includes free SSL via Let’s Encrypt. For business sites that need extended validation, paid options are also available.

Free SSL (Let’s Encrypt)

Let’s Encrypt provides Domain Validation (DV) certificates at no cost. They encrypt the connection between your visitors and your server - the padlock icon in the browser.

On GoZen Host shared hosting, Let’s Encrypt is installed automatically when your domain’s DNS points to our nameservers. You don’t need to do anything.

To verify it’s active:

  1. Log into cPanel
  2. Go to SecuritySSL/TLS Status
  3. Your domain should show a green padlock with an expiry date

Let’s Encrypt certificates are valid for 90 days and renew automatically. If auto-renewal fails (usually because of a DNS issue), you’ll get an email notification.

When to Use a Paid SSL

Free SSL encrypts traffic just as well as paid SSL. The difference is identity verification:

TypeValidatesShowsUse Case
Domain Validation (DV)You control the domainPadlock iconPersonal sites, blogs, most web apps
Organisation Validation (OV)Your company existsPadlock + company name in certificate detailsBusiness sites, SaaS
Extended Validation (EV)Company legally verifiedPadlock + company name (visible in cert details)Banks, healthcare, e-commerce with high trust needs

GoZen Host offers paid SSL certificates:

CertificatePriceValidation
Standard DV (Sectigo)Free (Let’s Encrypt)Domain only
Organisation Validation$49/yearCompany verification
Extended Validation$149/yearFull legal verification

Installing a Paid SSL Certificate

If you purchase an OV or EV certificate:

  1. Go to SecuritySSL/TLS in cPanel
  2. Click Generate a Certificate Signing Request (CSR)
  3. Fill in your company details and domain name
  4. Copy the CSR - you’ll need it for the certificate provider
  5. Complete the validation process (email or DNS verification)
  6. Once issued, go back to SSL/TLSInstall and Manage SSL for your site (HTTPS)
  7. Paste the Certificate (CRT) and Private Key
  8. Click Install Certificate

For GoZen-purchased SSL certificates, our team handles the installation for you. Open a support ticket with your order number and we’ll set it up.

Forcing HTTPS

After SSL is installed, you want all traffic to use HTTPS. There are two ways:

Option 1: cPanel (Easiest)

  1. Go to Domains in cPanel
  2. Find your domain and toggle Force HTTPS Redirect to ON

Option 2: .htaccess

Add this to the top of your public_html/.htaccess file:

  RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Option 1 is simpler and less error-prone. Use .htaccess only if you need more control (e.g., excluding certain paths).

Mixed Content Warnings

After switching to HTTPS, you might see a warning that your site is “not fully secure.” This means some resources (images, scripts, stylesheets) are still loading over HTTP.

Fix this by:

  1. Searching your database for http://yourdomain.com and replacing with https://yourdomain.com (WordPress users: use the Better Search Replace plugin)
  2. Checking your theme for hardcoded HTTP URLs in templates
  3. Checking external scripts - make sure third-party resources (fonts, analytics, CDN links) use HTTPS

Troubleshooting

ProblemFix
Let’s Encrypt not issuingMake sure DNS points to GoZen nameservers and the domain resolves
Certificate expiredCheck SSL/TLS Status in cPanel - click Run AutoSSL to trigger renewal
Mixed content warningsFind and replace HTTP URLs in your content and templates
ERR_SSL_PROTOCOL_ERRORCheck that port 443 isn’t blocked and the certificate is installed correctly
Too many redirectsRemove duplicate HTTPS redirect rules - pick either cPanel toggle or .htaccess, not both

Use the GoZen SSL Auditor to scan your domain and verify that your certificate is valid, properly chained, and not expiring soon.

What to Do Next

Last updated 05 Apr 2026, 00:00 +0200. history

Was this page helpful?